evaluation-anchor-checker
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [Prompt Injection] (SAFE): The role prompt and workflow instructions are strictly focused on technical editing and do not attempt to bypass safety filters or extract system prompts.
- [Data Exposure & Exfiltration] (SAFE): The skill description explicitly states 'Network: none', and no patterns for credential harvesting or data exfiltration were found.
- [Indirect Prompt Injection] (LOW): The skill processes untrusted external data which could contain malicious instructions.
- Ingestion points: Reads from sections/*.md, outline/writer_context_packs.jsonl, outline/evidence_drafts.jsonl, and outline/anchor_sheet.jsonl.
- Boundary markers: Absent; there are no instructions to delimit or ignore instructions within the ingested content.
- Capability inventory: The skill has the capability to write/update sections/*.md.
- Sanitization: Absent; the skill lacks a validation or sanitization step for the data it processes.
- [Remote Code Execution] (SAFE): No remote code downloads or execution patterns were detected; the skill is entirely prompt-based.
- [Persistence Mechanisms] (SAFE): No attempts to modify startup files or system services were found.
Audit Metadata