sveltekit-structure
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Prompt Injection (SAFE): No instructions found that attempt to override system behavior, bypass safety filters, or extract system prompts.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths, or network requests (curl, wget, fetch) detected.
- Obfuscation (SAFE): The content is clear markdown with no encoded strings (Base64), zero-width characters, or homoglyphs.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No package installations (npm/pip) or remote script executions found. It is a documentation-only skill.
- Privilege Escalation & Persistence (SAFE): No commands related to permission changes (sudo/chmod) or system persistence (cron/startup) are present.
- Indirect Prompt Injection (SAFE): The skill does not ingest external untrusted data; it provides static templates and structure guidance for developers.
- Dynamic Execution (SAFE): No runtime code generation, evaluation, or unsafe deserialization patterns detected.
Audit Metadata