nostr
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODEEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE] (SAFE): No active malicious patterns, obfuscation, or persistence mechanisms were detected in the skill documentation.
- [NO_CODE] (SAFE): This skill is entirely markdown-based and does not include any associated scripts, binaries, or executable logic.
- [EXTERNAL_DOWNLOADS] (LOW): The skill provides instructions for the agent to fetch external NIP documentation from GitHub, creating an indirect prompt injection surface (Category 8). Mandatory Evidence Chain: 1. Ingestion points: Markdown files from https://github.com/nostr-protocol/nips; 2. Boundary markers: No markers or warnings specified to ignore embedded instructions; 3. Capability inventory: No scripts, subprocess calls, or file-write capabilities are present; 4. Sanitization: No sanitization or validation of the fetched content is described.
Audit Metadata