analyze-and-plan
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, unauthorized command execution, or security vulnerabilities were detected. The skill consists entirely of instructional markdown and configuration files.
- [PROMPT_INJECTION]: The skill proactively addresses indirect prompt injection through an 'External Content Safety' section. 1. Ingestion points: reference URLs and visual materials processed during analysis. 2. Boundary markers: Explicit safety section in SKILL.md. 3. Capability inventory: No dangerous tools are listed or invoked. 4. Sanitization: Instructions explicitly state to treat fetched content as untrusted and never follow embedded directives.
- [DATA_EXFILTRATION]: No access to sensitive files or unauthorized network exfiltration patterns identified.
- [REMOTE_CODE_EXECUTION]: No remote code execution or dynamic execution patterns found.
Audit Metadata