brainstorming
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No attempts to bypass safety filters or override agent behavior were detected. The skill reinforces a Socratic questioning protocol rather than attempting to evade instructions.
- [Data Exposure & Exfiltration] (SAFE): While the skill requests access to Read, Glob, and Grep tools, there are no commands targeting sensitive file paths (e.g., .ssh, .aws) or instructions to transmit data to external URLs.
- [Remote Code Execution] (SAFE): No patterns for downloading or executing remote scripts or packages were found.
- [Obfuscation] (SAFE): The content is clear markdown with no encoded strings (Base64), zero-width characters, or homoglyphs.
- [Indirect Prompt Injection] (SAFE): The skill references dynamic-questioning.md as a data source. Analysis: 1. Ingestion points: dynamic-questioning.md; 2. Boundary markers: Not defined; 3. Capability inventory: Read-only (Read, Glob, Grep); 4. Sanitization: Not present. The risk is negligible as the agent lacks network or write capabilities to act on potential malicious instructions in those files.
Audit Metadata