email-systems
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Prompt Injection] (SAFE): The skill uses role-playing instructions ('You are an email systems engineer') which are standard for defining agent behavior. No malicious overrides or jailbreak attempts were detected.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, API keys, or sensitive file path access were found in the markdown.
- [Remote Code Execution] (SAFE): The skill does not contain any scripts, package managers, or commands to download and execute remote content.
- [Indirect Prompt Injection] (LOW): The skill discusses processing email data (bounces, events), which is a common surface for indirect injection. However, this file only provides high-level guidance and does not include vulnerable code that would ingest untrusted data without sanitization.
- [No Code] (SAFE): This skill consists entirely of markdown documentation and does not include any executable scripts (.py, .js, .sh) or configuration files.
Audit Metadata