competency-framework-translator
Pass
Audited by Gen Agent Trust Hub on May 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill is composed entirely of natural language instructions and configuration metadata. There are no scripts, binaries, or references to external code execution.
- [PROMPT_INJECTION]: The skill has an attack surface for indirect prompt injection as it processes external framework text provided by users. However, the risk is negligible because the skill does not possess capabilities such as file system access, network communication, or shell command execution. Any attempted injection would be limited to the text-based output provided to the user.
- Ingestion points: The skill ingests data through the
framework_text,framework_reference, andtarget_contextfields in SKILL.md. - Boundary markers: The prompt uses bold text headers (e.g., Framework reference:) to separate user inputs, which provides structural delimitation but not a hard security boundary.
- Capability inventory: No tools, shell commands, or file system operations are requested or used by this skill.
- Sanitization: No input sanitization or filtering logic is implemented for the interpolated text.
Audit Metadata