prototype
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill instructions do not contain any attempts to override agent behavior, bypass safety guidelines, or extract system prompts. The content is focused on explaining technical concepts.
- [DATA_EXFILTRATION]: No sensitive file paths, credential patterns, or network communication tools (like curl or wget) were found. The skill does not attempt to send data to external domains.
- [REMOTE_CODE_EXECUTION]: There are no patterns involving the download or execution of remote scripts. The skill relies entirely on static documentation and metadata.
- [COMMAND_EXECUTION]: No shell commands or subprocess calls are defined in the skill. The 'read_file' tool mentioned in CARD.yml is noted as an optional capability for looking up local files related to the prototype chain.
- [CREDENTIALS_UNSAFE]: No hardcoded API keys, tokens, or private secrets were identified in any of the files.
Audit Metadata