appstore-info-generator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Prompt Injection (SAFE): No instructions designed to bypass safety filters or override agent behavior were found.
- Data Exposure & Exfiltration (SAFE): The skill does not access sensitive credentials or files and has no network exfiltration capabilities.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No remote code downloads or external package dependencies were detected.
- Indirect Prompt Injection (SAFE): The skill ingests user-controlled strings to generate documentation. 1. Ingestion points: User-provided App Name, Purpose, and Features. 2. Boundary markers: Absent; user strings are interpolated into markdown templates. 3. Capability inventory: Writing generated markdown to a local file (docs/appstore-info.md). 4. Sanitization: Absent. Analysis: The risk is negligible as the skill lacks high-risk capabilities like network access or shell execution.
- No Code (SAFE): The skill consists entirely of instructions and does not ship with any scripts or binaries.
Audit Metadata