hipaa-compliance
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns detected. The skill consists entirely of markdown instructions and reference documents providing regulatory guidance and document templates.
- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection through its ingestion of user-provided documents and architecture diagrams. 1. Ingestion points: Documents and workflows submitted for compliance review (SKILL.md). 2. Boundary markers: Absent; user content is not explicitly delimited in instructions. 3. Capability inventory: The skill is restricted to textual output and lacks access to shell, network, or file-write tools. 4. Sanitization: Absent. The risk is assessed as safe because there are no powerful capabilities for an injection to exploit.
- [EXTERNAL_DOWNLOADS]: The skill contains links to the U.S. Department of Health and Human Services (hhs.gov) for breach reporting and complaint filing. These references target well-known and official government resources for compliance purposes.
Audit Metadata