content-transformation
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Prompt Injection (SAFE): The skill contains instructional patterns for the AI but does not include any commands to bypass safety filters, ignore system instructions, or extract internal prompts.
- Data Exposure & Exfiltration (SAFE): There are no hardcoded credentials, sensitive file path references, or network-capable commands (curl, wget) that could be used to leak information.
- Obfuscation (SAFE): No Base64 encoding, zero-width characters, or homoglyphs were detected in the text or metadata.
- Unverifiable Dependencies (SAFE): The skill does not include a package.json, requirements.txt, or any script that installs or executes remote code.
- Indirect Prompt Injection (LOW): Because the skill is designed to process external content (summarizing articles, cleaning HTML, processing transcripts), it is theoretically susceptible to instructions embedded in that content. However, the skill lacks any 'active' capabilities like file-writing or tool-calling, which restricts the potential impact to the generated text response itself.
- Dynamic Execution (SAFE): No use of eval(), exec(), or runtime compilation techniques was found.
Audit Metadata