django-expert
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions to override behavior or bypass safety filters were found in the skill or its associated documentation.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths (e.g., .ssh or .env), or network exfiltration patterns were detected.
- [Remote Code Execution] (SAFE): No commands to download or execute remote scripts (e.g., curl | bash) were found. Mentions of tools like 'django-upgrade' are purely instructional.
- [Indirect Prompt Injection] (SAFE): The skill naturally ingests user requests and existing project code. While this constitutes an attack surface, the skill has no dangerous capabilities (like file writes or network access) that could be exploited. 1. Ingestion Points: User requests and code context (SKILL.md). 2. Boundary Markers: Not explicitly mentioned. 3. Capability Inventory: No command execution, file-writing, or network operations. 4. Sanitization: Not mentioned.
Audit Metadata