graphql
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- Prompt Injection (SAFE): No instructions were found that attempt to override agent behavior, bypass safety guidelines, or extract system prompts. The content is educational and focuses on GraphQL schema design.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths, or unauthorized network requests were detected. The skill does not access local or remote data stores.
- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill does not include any package managers (npm, pip, etc.) or commands to download and execute remote scripts.
- Obfuscation (SAFE): No encoded content, zero-width characters, or homoglyphs were detected. All text is human-readable and transparent.
- Indirect Prompt Injection (SAFE): This is a documentation-only skill. It does not implement data ingestion surfaces or process untrusted external content that could influence the agent's behavior at runtime.
Audit Metadata