Skills
skills/unitoneai/securityskills/model-supply-chain/Gen Agent Trust Hub

model-supply-chain

Pass

Audited by Gen Agent Trust Hub on May 4, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is purely defensive and instructional. It implements best practices by restricting its toolset to 'Read', 'Grep', and 'Glob' in the frontmatter, preventing unauthorized code execution or network operations.
  • [SAFE]: Explicit safety instructions are provided to the agent, warning it to treat all analyzed content as untrusted and to specifically avoid following instructions or executing code found within reviewed files.
  • [SAFE]: The external references and real-world examples (such as PoisonGPT and ShadowRay) are provided for educational context and do not contain malicious payloads or obfuscated URLs.
  • [SAFE]: No evidence of prompt injection, data exfiltration, or persistence mechanisms was found. The skill adheres to the 'least privilege' principle and matches the stated purpose of security auditing.
Audit Metadata
Risk Level
SAFE
Analyzed
May 4, 2026, 02:07 AM
Security Audit — agent-trust-hub — model-supply-chain