bc-performance

Pass

Audited by Gen Agent Trust Hub on Mar 19, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [SAFE]: No security issues were identified in the skill content. The instructions in SKILL.md focus on legitimate performance best practices for the BigCommerce platform.
  • [PROMPT_INJECTION]: The skill utilizes external data ingestion via web search and fetch tools.
  • Ingestion points: Official documentation fetched from developer.bigcommerce.com via WebSearch and WebFetch (SKILL.md).
  • Boundary markers: None are present in the prompt instructions.
  • Capability inventory: The skill has access to Bash, Write, and Edit tools (SKILL.md).
  • Sanitization: No explicit content validation is performed.
  • Note: Because the ingestion source is a well-known service, the indirect prompt injection risk is evaluated as safe.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 19, 2026, 07:32 AM
Security Audit — agent-trust-hub — bc-performance