discernment
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: No attempts to override agent behavior, bypass safety filters, or extract system prompts were detected. The instructional language used (e.g., "Important", "Diagnostic question") is benign and consistent with the skill's primary purpose of providing a structured framework.
- [DATA_EXFILTRATION]: No sensitive data exposure or network operations were found. The skill does not access environment variables, credential files, or perform any external HTTP requests.
- [REMOTE_CODE_EXECUTION]: The skill does not contain any code installation or execution commands. There are no references to package managers (npm, pip) or remote script fetching.
- [COMMAND_EXECUTION]: No shell commands, subprocess calls, or privilege escalation patterns (sudo, chmod) are present in the skill files.
- [OBFUSCATION]: Analysis of the text content found no evidence of Base64 encoding, zero-width characters, homoglyphs, or other techniques used to hide malicious instructions or URLs.
- [INDIRECT_PROMPT_INJECTION]: The skill is designed to process user-provided situations for analysis (ingested at Step 0). While it lacks explicit boundary markers to delimit untrusted data, the skill has no dangerous capabilities (no file access, network access, or code execution tools) that could be exploited via malicious input. The risk is negligible.
- [DYNAMIC_CONTEXT_INJECTION]: No use of the dynamic shell command syntax (!
command) was found in the SKILL.md file.
Audit Metadata