frappe-web-forms
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: No patterns attempting to bypass agent safety guidelines or override instructions were found.
- [DATA_EXFILTRATION]: No evidence of hardcoded credentials, access to sensitive file paths, or unauthorized network operations was detected.
- [REMOTE_CODE_EXECUTION]: The skill does not perform external downloads or execute remote scripts; all code samples utilize standard Frappe framework APIs.
- [COMMAND_EXECUTION]: No dangerous shell commands, privilege escalation (sudo), or persistence mechanisms were identified.
- [SAFE]: The skill demonstrates a strong security posture by providing a 'Guardrails' section that mandates server-side validation, reCAPTCHA for public forms, and proper output escaping.
Audit Metadata