karpathy-idea-files
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE]: The skill consists entirely of Markdown documentation, templates, and text-based prompts. No executable scripts, binaries, or configuration files that could run code are present.
- [PROMPT_INJECTION]: No malicious patterns such as 'ignore previous instructions', 'DAN', or safety bypasses were found. The instructional content is limited to defining a documentation format and guiding the agent on how to help users fill it out.
- [DATA_EXFILTRATION]: No network access commands (like curl or wget) or hardcoded credentials were detected. The skill does not access sensitive local file paths.
- [INDIRECT_PROMPT_INJECTION]: The skill defines a surface for processing user-provided ideas and project specifications.
- Ingestion points: User input for 'rough idea' or 'idea spec' in SKILL.md.
- Boundary markers: None present in the prompt templates.
- Capability inventory: The skill possesses no dangerous capabilities; it only performs text transformation and formatting within the agent's context.
- Sanitization: None present.
- [COMMAND_EXECUTION]: No shell commands or system-level operations are defined or requested.
Audit Metadata