cto-advisor
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Extensive analysis of the skill's instructions, references, and included scripts found no security risks or malicious patterns. The skill performs its described functions using safe, deterministic logic.
- [COMMAND_EXECUTION]: The skill documentation includes examples of executing local Python scripts (
scripts/tech_debt_analyzer.pyandscripts/team_scaling_calculator.py). These scripts are self-contained and use standard Python libraries to process user-provided metrics. They do not initiate network connections, access sensitive system files, or execute arbitrary shell commands. - [DATA_EXFILTRATION]: The skill does not contain any code or instructions for harvesting credentials or sending data to external servers. No sensitive file paths (e.g., .ssh, .aws) are accessed.
- [PROMPT_INJECTION]: The skill's instructions are focused on technical leadership and organizational strategy. There are no attempts to override agent safety protocols, reveal system prompts, or use deceptive language to bypass constraints.
Audit Metadata