expert-validator
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were identified. The skill consists of markdown-based instructions, scoring criteria, and output templates for business analysis.
- [NO_CODE]: The skill does not include any scripts, executables, or code files, significantly reducing the attack surface.
- [PROMPT_INJECTION]: Assessment of indirect prompt injection surface: 1. Ingestion points: User-provided positioning materials (e.g., bio, about page, pitch) enter the context via instructions in 'references/full-guide.md'; 2. Boundary markers: Absent; 3. Capability inventory: No dangerous capabilities (such as subprocess calls, exec/eval, file-write, or network operations) are present in any skill files; 4. Sanitization: Absent. Due to the lack of executable capabilities, the injection surface presents no significant security risk.
- [EXTERNAL_DOWNLOADS]: No external resources, scripts, or dependencies are fetched or referenced for execution.
Audit Metadata