score-analyzer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Data Exposure & Exfiltration (SAFE): No sensitive data access or network exfiltration patterns detected. The skill operates entirely on provided text input.
- Remote Code Execution (SAFE): No external dependencies, package managers, or dynamic execution patterns found. The allowed-tools list is empty.
- Prompt Injection (SAFE): No attempts to bypass safety filters or override system instructions.
- Indirect Prompt Injection (LOW): While the skill processes untrusted evaluation data (ingested as evaluation results in SKILL.md), it lacks boundary markers for that data. However, the skill has no capabilities (no tool access, no shell, no network) to be exploited, making this a surface-level risk only.
Audit Metadata