writing-beats
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns detected. The skill functions as a narrative writing assistant, involving standard file system interactions required for its stated purpose.
- [SAFE]: The skill performs file read and write operations only on files specified or provided by the user (raw material and the target article file).
- [SAFE]: No indicators of remote code execution, data exfiltration, obfuscation, or persistence mechanisms were found.
- [SAFE]: While the skill processes untrusted external content (raw material), which is an inherent surface for indirect prompt injection, it is considered safe within the context of a writing tool. The mandatory evidence chain for this surface is as follows:
- Ingestion points: Raw material is read from a user-provided markdown file as described in SKILL.md.
- Boundary markers: None explicitly defined in the instructions to isolate raw content from the agent's logic.
- Capability inventory: The agent has the capability to read from and write to the local file system.
- Sanitization: No sanitization or validation of the raw material's content is specified.
Audit Metadata