zhin-helper
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): No malicious patterns or security vulnerabilities were identified. The skill acts as a documentation helper for the Zhin framework.
- CREDENTIALS_UNSAFE (SAFE): The skill demonstrates how to configure chat platform adapters using safe placeholders such as 'YOUR_BOT_TOKEN' and 'YOUR_PASSWORD' instead of hardcoding real secrets.
- COMMAND_EXECUTION (SAFE): The shell commands provided in the documentation (e.g., npm install, npm start) are standard for Node.js development and are intended for the user to run manually during project setup.
- PROMPT_INJECTION (SAFE): No instructions were found that attempt to override agent behavior, bypass safety filters, or extract system prompts.
Audit Metadata