Skills
skills/zhinjs/ai-skills/zhin-context-services/Gen Agent Trust Hub

zhin-context-services

Fail

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: CRITICAL
Full Analysis
  • [Data Exposure & Exfiltration] (SAFE): The automated scanner's alert regarding 'plugin.logger.info' was reviewed and determined to be a false positive; the string represents a standard framework logging method and not a malicious URL or exfiltration attempt.
  • [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill imports the standard framework module '@zhin.js/core' and does not perform any remote code downloads or execution.
  • [Persistence Mechanisms] (SAFE): The Cron service documented is a standard framework feature for scheduled tasks and is not used here for unauthorized persistence.
  • [Command Execution] (SAFE): No arbitrary command execution patterns were detected in the skill content.
  • [Obfuscation] (SAFE): No obfuscated content or hidden instructions were identified.
Recommendations
  • Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 17, 2026, 06:39 PM