pmf-survey
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- NO_CODE (SAFE): Analysis of all 20 files confirms that the skill is composed strictly of Markdown documentation, templates, and strategic patterns. No Python scripts, Node.js code, or shell commands are included.
- PROMPT_INJECTION (SAFE): The content consists of business frameworks and survey methodologies. There are no attempts to bypass AI safety filters, use 'DAN' style role-play, or extract system prompts.
- DATA_EXPOSURE & EXFILTRATION (SAFE): No sensitive file paths, hardcoded secrets, or network operations (e.g., curl, wget) were found. The skill does not transmit data to external domains.
- EXTERNAL_DOWNLOADS (SAFE): There are no dependency files (requirements.txt, package.json) or remote code execution patterns. The skill relies entirely on its internal documentation.
- INDIRECT PROMPT INJECTION (SAFE): While the methodology involves analyzing free-text responses from users, the skill itself provides no tools or code to process this data, thus presenting no active vulnerability surface.
Audit Metadata