paper-context-resolver
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: No attempts to override agent behavior, bypass safety filters, or extract system prompts were detected. The instructions focus on defining the scope and limitations of the skill.
- [DATA_EXFILTRATION]: No commands for accessing sensitive files (e.g., SSH keys, credentials) or performing unauthorized network operations were found.
- [REMOTE_CODE_EXECUTION]: There are no patterns suggesting the download or execution of remote scripts or unverified packages.
- [COMMAND_EXECUTION]: The skill does not contain any shell commands or subprocess calls. It is purely instructional.
- [OBFUSCATION]: No hidden content, encoded strings, or deceptive character substitutions were found in any of the files.
- [INDIRECT_PROMPT_INJECTION]: While the skill is designed to process external data (academic papers and repository files), it does not possess dangerous capabilities like file writing or command execution that could be exploited via malicious content in those sources. The instructions also include explicit rules for conflict resolution and narrow scoping to mitigate risks.
- [PRIVILEGE_ESCALATION]: No attempts to gain administrative privileges or modify system configurations were detected.
- [PERSISTENCE]: No mechanisms for maintaining access across sessions, such as modifying startup scripts or cron jobs, are present.
- [METADATA_POISONING]: The metadata fields (name, description, etc.) are consistent with the skill's functionality and do not contain deceptive instructions.
- [DYNAMIC_EXECUTION]: No code generation or dynamic loading of executable content at runtime was observed.
Audit Metadata