review-session
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Indirect Prompt Injection (SAFE): The skill reads from local learning plans and previous session logs to build context for quizzes.
- Ingestion points:
learning planandprevious sessions(accessed via the Read tool in the Setup phase). - Boundary markers: None identified in the skill instructions.
- Capability inventory:
Read,Write,Globtools for local file management. - Sanitization: No explicit sanitization or validation of the file content is performed; however, the risk is minimal as the skill primarily interacts with data it manages itself.
- Data Exposure & Exfiltration (SAFE): The skill uses file system tools to manage state, but it contains no network-enabled commands or exfiltration patterns targeting external domains.
Audit Metadata