tgravity-work-asset-export

Pass

Audited by Gen Agent Trust Hub on Jun 27, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill performs localized asset management tasks with no detected security risks. It does not access sensitive system directories, as per the explicit constraints defined in the instructions.
  • [COMMAND_EXECUTION]: The skill executes local Python scripts (scripts/export_assets.py and scripts/validate_asset_cards.py) which are part of the skill package. Technical review of these scripts confirms they do not perform network operations, use external dependencies, or access unauthorized system files.
  • [PROMPT_INJECTION]: No attempts to override agent behavior or bypass safety filters were found. The skill instructions focus on legitimate asset processing and include negative constraints to prevent the scanning of sensitive folders like personal files or credentials.
  • [DATA_EXFILTRATION]: No patterns associated with data exfiltration or credential harvesting were identified. File processing is confined to user-specified source and output paths.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 27, 2026, 08:01 AM
Security Audit — agent-trust-hub — tgravity-work-asset-export