sub-processor-management
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides documentation and a Python-based compliance engine for managing GDPR Article 28(2) sub-processor approval workflows. No malicious patterns or security risks were identified.
- [COMMAND_EXECUTION]: No shell commands, subprocess calls, or system-level operations are present in any of the files.
- [EXTERNAL_DOWNLOADS]: The skill does not perform any network operations, download external files, or reference remote scripts.
- [DATA_EXFILTRATION]: There is no access to sensitive system files (e.g., credentials, SSH keys) and no network capabilities to send data externally.
- [PROMPT_INJECTION]: The documentation and metadata contain no instructions aimed at overriding agent behavior, bypassing safety filters, or extracting system prompts.
- [REMOTE_CODE_EXECUTION]: The Python script uses only standard library modules (json, uuid, datetime, dataclasses, enum) and contains no dynamic execution patterns like eval() or exec().
Audit Metadata