growth-engineering
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFE
Full Analysis
- [Data Exposure & Exfiltration] (SAFE): The skill correctly demonstrates the use of environment variables (
process.env.POSTHOG_API_KEY) for handling API credentials rather than hardcoding them. - [Unverifiable Dependencies & Remote Code Execution] (SAFE): References the standard and well-known
posthog-nodepackage for Node.js. No suspicious download or execution patterns were identified. - [Prompt Injection] (SAFE): The content is purely instructional and technical. No attempts to override agent behavior or bypass safety guardrails were found.
- [Persistence Mechanisms] (SAFE): The skill does not contain any commands related to shell profiles, cron jobs, or system services.
- [Privilege Escalation] (SAFE): No use of
sudo,chmod, or other privilege-altering commands were detected.
Audit Metadata