dark-pattern-audit
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill's logic is constrained to local repository inspection and narrative reporting. It does not perform network operations, access sensitive system credentials, or execute external scripts. Its activities are confined to documentation-guided repository analysis.
- [INDIRECT_PROMPT_INJECTION]: The skill ingests and analyzes untrusted data from the repository being audited, which constitutes an indirect prompt injection surface where instructions hidden in the audited code could attempt to influence the agent's findings.
- Ingestion points: Local source code and product copy analyzed during the audit workflow (described in SKILL.md).
- Boundary markers: Absent; the agent is not instructed to use specific delimiters or protective framing when processing file content.
- Capability inventory: Repository search and file reading.
- Sanitization: No sanitization or filtering of audited repository content is mentioned in the instructions.
Audit Metadata