iso-13485-certification
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill invokes a local Python script to perform gap analysis on user-specified documentation.
- Evidence: The instruction in the 'Core Workflow' section specifies running 'python scripts/gap_analyzer.py --docs-dir <path_to_docs> --output gap-report.json'.
- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it ingests and processes untrusted user-provided documentation.
- Ingestion points: User-provided directories containing documents in various formats (.txt, .md, .doc, etc.) are processed by the analyzer script.
- Boundary markers: Absent; there are no specific instructions for the agent to ignore or delimit embedded natural language instructions within the documents.
- Capability inventory: The skill can execute local Python scripts and generate new documentation based on templates.
- Sanitization: Absent; no sanitization or validation of the input document content is described.
Audit Metadata