woo-performance
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified in the skill. The instructions focus on standard WordPress and WooCommerce performance best practices.
- [EXTERNAL_DOWNLOADS]: The skill uses
WebSearchandWebFetchto retrieve documentation fromdeveloper.woocommerce.com, which is a well-known and trusted source for WooCommerce developers. No unauthorized or suspicious external code downloads were detected. - [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection (Category 8) due to its ability to ingest untrusted data from the web.
- Ingestion points:
WebFetchtool is used to retrieve external documentation. - Boundary markers: None identified in the provided instructions.
- Capability inventory: The skill has access to
Bash,Write, andEdittools. - Sanitization: None identified for external content. Despite the surface, the instructions specifically target trusted documentation domains, and no malicious exploitation patterns were found.
Audit Metadata