schema-markup
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized network operations were detected in the skill instructions or associated Python scripts.
- [COMMAND_EXECUTION]: The skill provides three Python scripts (
schema_auditor.py,schema_generator.py, andschema_validator.py) for processing local HTML and JSON files. These scripts use standard Python libraries and do not perform any dangerous operations or request elevated privileges. - [PROMPT_INJECTION]: The skill processes untrusted local HTML and JSON files, creating a potential surface for indirect prompt injection.
- Ingestion points:
scripts/schema_auditor.pyandscripts/schema_validator.pyread content from files specified via command-line arguments. - Boundary markers: None; the scripts do not use delimiters to isolate content extracted from external files in their output.
- Capability inventory: The scripts are restricted to file reading and printing to standard output, with no network or system-level modification capabilities.
- Sanitization: No sanitization or escaping is performed on the data extracted from the schema blocks before it is displayed.
Audit Metadata