infographic-generator
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a legitimate design tool that operates locally. It does not perform network requests, access sensitive system files, or execute remote code. All operations are restricted to generating and saving text-based prompt templates.- [PROMPT_INJECTION]: The
scripts/generate.pyutility accepts a 'topic' argument and interpolates it into a prompt string. While this serves as an ingestion point for untrusted data (Category 8 surface), the risk is minimal as the script's output is intended for manual use by the designer. Ingestion point: 'topic' CLI argument. Boundary markers: Absent. Capability inventory: Local filesystem write (savemethod). Sanitization: Filename is sanitized for safe storage, though content remains raw to preserve the user's intended topic.- [COMMAND_EXECUTION]: The skill contains a Python script for prompt generation. The script uses standard libraries and performs simple file I/O to save results. No dangerous system calls or arbitrary command executions were found.
Audit Metadata