bcr-establishment
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is primarily educational and administrative, focusing on GDPR Article 47 compliance. The included documentation and scripts follow best practices for data protection governance.
- [PROMPT_INJECTION]: No attempts to override agent instructions, bypass safety filters, or extract system prompts were found. The instructional content is strictly focused on the stated purpose of BCR establishment.
- [DATA_EXFILTRATION]: The skill does not contain any code or commands that access sensitive local files (such as SSH keys or cloud credentials) or perform unauthorized network operations. References to emails and entities are for illustrative template purposes.
- [REMOTE_CODE_EXECUTION]: No remote code execution patterns, such as piping web content to a shell or using dynamic evaluation functions (eval/exec), were identified.
- [EXTERNAL_DOWNLOADS]: The skill does not define external dependencies or download any scripts or configuration files from remote sources.
- [COMMAND_EXECUTION]: The Python script provided is a pure-logic utility for calculating compliance scores and timelines using standard library components; it does not execute external shell commands or interact with the operating system in an unsafe manner.
Audit Metadata