prompt-engineering
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: Static analysis flagged patterns like "Ignore previous instructions" in
references/production-patterns.mdandreferences/security-patterns.md. These instances are part of educational examples for building test suites or regex patterns for injection detection, rather than instructions to the agent. - [COMMAND_EXECUTION]: The skill includes
uv run pythoncommands inSKILL.mdandeval/README.md. These are documentation for developers to manage the skill's lifecycle and are not executed by the agent automatically. - [DATA_EXFILTRATION]: No network exfiltration patterns were found. The skill configuration specifically disables network access (
network: none) and provides guidance on isolating untrusted data. - [INDIRECT_PROMPT_INJECTION]: The skill is designed to handle user-provided data. It addresses this inherent risk by providing a dedicated security guide (
references/security-patterns.md) that outlines techniques for boundary enforcement and input isolation.
Audit Metadata