ai-agent-memory-erasure-proof
Pass
Audited by Gen Agent Trust Hub on Jun 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a comprehensive privacy and compliance workflow designed to handle sensitive data erasure requests securely.
- [COMMAND_EXECUTION]: The provided Python snippets perform database deletions and API calls to subprocessors. Analysis of the code shows the use of parameterized queries (e.g.,
db.execute("... WHERE tenant_id = %s ...", (req.tenant_id, ...))), which effectively prevents SQL injection. API interactions are handled via structured client libraries for defined subprocessors. - [DATA_EXFILTRATION]: While the skill involves network operations (communicating with subprocessors and uploading to a vault), these are strictly functional requirements for the stated purpose of data erasure and evidence storage. No patterns of unauthorized or hidden data exfiltration were found.
- [PROMPT_INJECTION]: The skill documentation and instructions do not contain any malicious patterns intended to override agent behavior, bypass safety filters, or extract system prompts.
- [REMOTE_CODE_EXECUTION]: No remote script downloads or dynamic execution of untrusted code (such as
evalorexecon external inputs) were detected. The skill relies on standard Python libraries and internal infrastructure components.
Audit Metadata