android-2d-development
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists entirely of markdown documentation and YAML metadata. No executable scripts (.py, .js, .sh), binary files, or configuration files capable of command execution were found.
- [PROMPT_INJECTION]: The skill is designed to process user-provided technical details regarding Android projects. This represents a standard surface for indirect prompt injection (Category 8) where instructions could be hidden in processed data. However, the skill lacks any capabilities—such as file writing, network operations, or subprocess execution—that would allow for a malicious payload to have any impact.
- [EXTERNAL_DOWNLOADS]: The skill references the author's official GitHub repository (github.com/tippyentertainment/skills.git) and the platform domain (tasking.tech). These are documented as vendor-owned resources and do not involve any automated downloads or executions.
Audit Metadata