security-review
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as an instructional framework for performing security audits. It contains no functional code, scripts, or external network requests.
- [DATA_EXPOSURE]: While the skill contains examples of hardcoded credentials and connection strings, these are explicitly labeled as 'BAD' examples for educational purposes and do not represent actual secrets or exfiltration logic.
- [PROMPT_INJECTION]: The instructions provide a structured format for security reporting and do not attempt to bypass agent safety guidelines or override system-level constraints.
- [EXTERNAL_DOWNLOADS]: The skill does not reference or attempt to download any external packages, scripts, or remote resources.
Audit Metadata