q-methods
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill consists entirely of Markdown instructions and documentation. There are no scripts (Python, JavaScript, Shell, etc.) provided or executed.
- [EXTERNAL_DOWNLOADS] (SAFE): No external URLs or remote resources are referenced for download or execution. The references to local files in the 'references/' directory are standard for skill structures and do not pose a remote code execution risk.
- [DATA_EXFILTRATION] (SAFE): There are no network operations (curl, wget, fetch) or commands that access sensitive user files or environment variables.
- [PROMPT_INJECTION] (SAFE): The instructions are focused on writing style and structure for academic papers. No patterns associated with prompt injection, such as 'ignore previous instructions' or bypass markers, were detected.
- [CREDENTIALS_UNSAFE] (SAFE): No hardcoded API keys, tokens, or credentials were found in the skill metadata or body.
- [INDIRECT_PROMPT_INJECTION] (SAFE): While the skill processes user-provided research data, it lacks any high-risk capabilities (like system commands or network access) that could be exploited via malicious data injection.
Audit Metadata