infranodus-orchestrator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Data Exposure & Exfiltration] (SAFE): Analysis of
scripts/graph_converter.pyconfirms it only performs local JSON-to-JSON transformations. It does not access sensitive system directories, environment variables, or hardcoded credentials, and lacks any networking code to exfiltrate data. - [Indirect Prompt Injection] (SAFE): The skill possesses a data ingestion surface via
infranodus_output.json. 1. Ingestion point:infranodus_output.jsonread viajson.load()ingraph_converter.py. 2. Boundary markers: None. 3. Capability inventory: Only local file writing; nosubprocess,exec, or network operations are present in any script. 4. Sanitization: Thenormalize_namefunction provides basic sanitization for entity IDs. The risk is negligible as the output is structured JSON and no execution follows. - [Dynamic Execution] (SAFE): Both
graph_converter.pyandworkflow_analyzer.pyuse static logic. There is no use ofeval(),exec(),pickle, or other dynamic loading mechanisms that would allow for runtime code injection or execution of untrusted input. - [Command Execution] (SAFE): The scripts do not use the
os.systemorsubprocessmodules. All operations are confined to internal Python logic and standard file I/O.
Audit Metadata