ai-features
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Prompt Injection] (SAFE): No instructions to bypass AI safety filters or override system instructions were found.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or unauthorized network operations are present. The skill mentions external APIs (Claude, GPT) only in an educational context.
- [Remote Code Execution] (SAFE): No patterns for downloading or executing remote scripts, or installing external packages, were detected.
- [Persistence & Privilege Escalation] (SAFE): No attempts to modify system configurations, shell profiles, or elevate privileges.
- [Indirect Prompt Injection] (LOW): The skill describes patterns for processing untrusted data (e.g., RAG, user-generated drafts). While it lacks explicit technical sanitization advice, it is purely instructional and includes human-in-the-loop recommendations (user edit/override) as a mitigation strategy.
Audit Metadata