Skills
skills/aktsmm/agent-skills/receipt-ocr-sorter/Gen Agent Trust Hub

receipt-ocr-sorter

Pass

Audited by Gen Agent Trust Hub on May 12, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [SAFE]: No malicious code, exfiltration patterns, or obfuscation detected across any files.
  • [SAFE]: All file operations are performed locally within user-defined project directories, with no evidence of external network communication.
  • [PROMPT_INJECTION]: Analyzed the surface for indirect prompt injection. 1. Ingestion points: local receipt images and PDFs processed in references/receipt_sorter.py. 2. Boundary markers: absent. 3. Capability inventory: local file movement and renaming in references/receipt_sorter.py. 4. Sanitization: the slugify function cleans OCR-extracted text by removing non-alphanumeric characters, effectively preventing directory traversal or injection into filenames.
  • [SAFE]: Dependencies and setup procedures involve well-known and legitimate software packages (e.g., surya-ocr, PyTorch, Pillow) from official repositories.
Audit Metadata
Risk Level
SAFE
Analyzed
May 12, 2026, 06:45 PM