bc-performance
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No security issues were identified in the skill content. The instructions in SKILL.md focus on legitimate performance best practices for the BigCommerce platform.
- [PROMPT_INJECTION]: The skill utilizes external data ingestion via web search and fetch tools.
- Ingestion points: Official documentation fetched from developer.bigcommerce.com via WebSearch and WebFetch (SKILL.md).
- Boundary markers: None are present in the prompt instructions.
- Capability inventory: The skill has access to Bash, Write, and Edit tools (SKILL.md).
- Sanitization: No explicit content validation is performed.
- Note: Because the ingestion source is a well-known service, the indirect prompt injection risk is evaluated as safe.
Audit Metadata