hr-performance-management
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a collection of text-based templates and guidelines. No executable code, remote dependencies, or suspicious network activities were identified.
- [PROMPT_INJECTION]: The skill uses placeholders to incorporate user-provided data into prompt templates (e.g., employee names, performance examples). While this creates a surface for indirect prompt injection, the risk is negligible as the skill lacks any active capabilities such as network access, file system modification, or command execution. Ingestion points: User-provided strings for placeholders in SKILL.md. Boundary markers: Absent. Capability inventory: None. Sanitization: Absent.
Audit Metadata