universal-opt-out

Pass

Audited by Gen Agent Trust Hub on Jun 16, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No malicious patterns or security vulnerabilities were detected across the skill's instructions, code, and metadata.
  • [PROMPT_INJECTION]: The instructions focus entirely on privacy compliance implementation and do not contain any attempts to override agent behavior or bypass safety guidelines.
  • [DATA_EXFILTRATION]: No network operations, sensitive file access, or credential harvesting patterns were found. The external domains listed in the suppression logic are illustrative of third-party ad trackers and are used for identification rather than connection.
  • [REMOTE_CODE_EXECUTION]: The provided Python script uses only standard libraries and contains no dynamic execution patterns such as eval(), exec(), or subprocess calls.
  • [COMMAND_EXECUTION]: The skill does not use any platform-specific command execution syntax like the dynamic context injection pattern.
  • [INDIRECT_PROMPT_INJECTION]: While the skill logic processes external signals like HTTP headers and User-Agent strings, it lacks dangerous capabilities (file writes, shell execution) that would make such ingestion exploitable.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 16, 2026, 03:33 PM
Security Audit — agent-trust-hub — universal-opt-out