message-system-architect

Pass

Audited by Gen Agent Trust Hub on Jul 5, 2026

Risk Level: SAFE
Full Analysis
  • [INDIRECT_PROMPT_INJECTION]: The skill processes external data sources, including competitor pages and user-provided persona documents. It mitigates this risk by including an explicit security instruction to treat all such sources as untrusted input and to disregard any instructions embedded within them.
  • [DATA_EXFILTRATION]: The skill operates entirely within the local project memory environment. No network requests, unauthorized external data transfers, or sensitive file access patterns were detected.
  • [COMMAND_EXECUTION]: There is no evidence of shell command execution, subprocess spawning, or dynamic code evaluation.
  • [REMOTE_CODE_EXECUTION]: The skill does not download or execute scripts from remote sources. All referenced dependencies are internal to the specified project structure.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 5, 2026, 04:16 PM
Security Audit — agent-trust-hub — message-system-architect