nda-triage

Pass

Audited by Gen Agent Trust Hub on May 17, 2026

Risk Level: SAFE
Full Analysis
  • [PROMPT_INJECTION]: The skill defines a structured workflow for processing user-provided NDA text. While it ingests external data, it does not include instructions to bypass safety filters or ignore prior directives.
  • [DATA_EXPOSURE]: No hardcoded credentials, sensitive file paths, or network exfiltration patterns were detected. The skill operates solely on the context provided in the conversation.
  • [REMOTE_CODE_EXECUTION]: There are no patterns involving the download or execution of remote scripts or binaries. The skill does not use package managers or dynamic execution functions.
  • [INDIRECT_PROMPT_INJECTION]: The skill is designed to process untrusted user input (NDA documents). However, because the skill has no tool-use capabilities, file-writing permissions, or network access, the potential for an indirect injection to cause harm is non-existent.
Audit Metadata
Risk Level
SAFE
Analyzed
May 17, 2026, 08:10 PM
Security Audit — agent-trust-hub — nda-triage