sparkscan-flutter
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill directs the agent to use official Scandit documentation and GitHub repositories. These are verified vendor resources corresponding to the author 'scandit'.
- [PROMPT_INJECTION]: Analysis of instructions regarding documentation access indicates they are stylistic choices for agent helpfulness rather than attempts to conceal malicious activity or bypass safety guidelines.
- [SAFE]: The skill possesses an indirect prompt injection surface because it reads and modifies user-provided source code. 1. Ingestion points: User-provided .dart and pubspec.yaml files. 2. Boundary markers: None. 3. Capability inventory: File-writing and code generation. 4. Sanitization: None. This surface is expected for the skill's purpose and does not present an immediate security risk.
Audit Metadata