label-capture-web
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: Analysis of the instructions confirms the absence of malicious override or bypass patterns. The static detector flag regarding concealment refers to instructions for the agent to handle documentation lookups and code writing internally to provide a better user experience, which is benign in this context.
- [EXTERNAL_DOWNLOADS]: The skill references several external resources, all of which are from trusted or well-known sources:
- Official Scandit documentation and portals: docs.scandit.com, ssl.scandit.com.
- Official Scandit GitHub repositories: github.com/Scandit/*.
- Well-known CDN for library assets: cdn.jsdelivr.net.
- [COMMAND_EXECUTION]: The skill's primary function is to help users integrate code into their projects. It instructs the agent to write integration code to user-specified files, which is a standard and expected capability for a developer tool skill.
- [DATA_EXFILTRATION]: No patterns of sensitive data access or exfiltration were found. The skill correctly uses placeholders for sensitive information like license keys and directs users to official portals to manage their credentials.
Audit Metadata