probe
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill incorporates comprehensive safety guidelines and legal requirements, explicitly prohibiting unauthorized testing and prioritizing staging environments over production to prevent service disruption.
- [EXTERNAL_DOWNLOADS]: The skill documents the installation of the Nuclei security scanner from the official ProjectDiscovery GitHub repository. This is a standard procedure for a well-known industry tool and is handled neutrally within the skill's instructions.
- [COMMAND_EXECUTION]: Probe utilizes command-line interfaces for security tooling (ZAP CLI, Nuclei) and Python-based scripts for data processing, such as converting scan results into SARIF format. these operations are strictly aligned with the skill's documented purpose as a security validator.
- [DATA_EXFILTRATION]: Patterns used to scan for sensitive files (e.g., .env or cloud credentials) are part of its legitimate vulnerability scanning capabilities for target applications and do not involve exfiltrating the agent's own internal environment data.
Audit Metadata