Skills
skills/jackjin1997/clawforge/python-cola-skill/Gen Agent Trust Hub

python-cola-skill

Pass

Audited by Gen Agent Trust Hub on Jun 18, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is primarily instructional, providing templates and best practices for project structure. It contains no malicious code or scripts.
  • [EXTERNAL_DOWNLOADS]: References standard and reputable Python frameworks such as Flask and Flask-SQLAlchemy, which are typical for the described use case.
  • [COMMAND_EXECUTION]: No shell commands, system calls, or subprocess executions are present in the skill's content.
  • [PROMPT_INJECTION]: The instructions are purely technical and architectural; no attempts to bypass safety guardrails or override system instructions were found.
  • [DATA_EXFILTRATION]: The skill does not perform network operations or access sensitive local data. It uses a local SQLite configuration for its implementation examples.
  • [CREDENTIALS_UNSAFE]: No hardcoded API keys, tokens, or credentials were detected in the templates or example files.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 18, 2026, 02:29 PM
Security Audit — agent-trust-hub — python-cola-skill