technical-analyst
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The instructions are strictly limited to technical analysis methodologies and do not contain any patterns typical of prompt injection or safety bypass attempts.
- [DATA_EXPOSURE]: No sensitive file paths, hardcoded credentials, or secrets were detected in the skill logic or metadata.
- [REMOTE_CODE_EXECUTION]: The skill does not include any mechanisms for downloading external scripts or executing remote code. It relies solely on local markdown templates and reference files.
- [COMMAND_EXECUTION]: There are no subprocess calls, shell executions, or system-level commands present in the provided files.
- [DATA_EXFILTRATION]: No network operations (curl, wget, etc.) or outbound communication patterns were found. The skill only performs read operations on its own bundled resources and write operations for report generation.
- [INDIRECT_PROMPT_INJECTION]: While the skill ingests untrusted data in the form of chart images, it lacks the capabilities (such as network access or code execution) required for an injection to cause harm. The analysis is limited to generating descriptive text based on visual data.
Audit Metadata