telos
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No instructions found that attempt to bypass safety filters or override system prompts.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths, or network operations detected.
- Obfuscation (SAFE): Content is clear markdown and mathematical notation; no hidden or encoded characters found.
- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill does not install any packages or download remote scripts.
- Privilege Escalation (SAFE): No commands for elevating system permissions (e.g., sudo, chmod) were found.
- Persistence Mechanisms (SAFE): No attempts to modify shell profiles or system services.
- Metadata Poisoning (SAFE): Metadata accurately describes the skill's purpose without deceptive instructions.
- Indirect Prompt Injection (SAFE): While the skill processes user queries about physiology, it lacks the technical capabilities (file writing, network access, code execution) to be exploited via data ingestion.
- Time-Delayed / Conditional Attacks (SAFE): No logic gating behavior based on time or environment variables.
- Dynamic Execution (SAFE): No use of eval, exec, or runtime compilation.
Audit Metadata