hipaa-breach-notify

Pass

Audited by Gen Agent Trust Hub on Jun 16, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill's instructions and scripts are consistent with its stated purpose of facilitating HIPAA compliance workflows. No prompt injection or malicious overrides were found.
  • [COMMAND_EXECUTION]: The utility script scripts/process.py possesses file-writing capabilities via the export_report function. This is a legitimate feature for saving assessment results and does not include unsafe subprocess or shell execution.
  • [EXTERNAL_DOWNLOADS]: References to external sites are limited to trusted government domains (hhs.gov, ocrportal.hhs.gov) for regulatory guidance and breach reporting.
  • [DATA_EXFILTRATION]: There are no network-enabled tools or suspicious data access patterns that would indicate a risk of data exfiltration.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 16, 2026, 03:33 PM
Security Audit — agent-trust-hub — hipaa-breach-notify