patch-prioritization
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements logic for vulnerability management based on established cybersecurity frameworks. It lacks any patterns associated with data exfiltration, credential harvesting, or unauthorized persistence.
- [PROMPT_INJECTION]: Includes a dedicated 'Prompt Injection Safety Notice' instructing the agent to ignore instructions embedded in data files, scan outputs, or ticket descriptions, which mitigates risks from processing untrusted content.
- [EXTERNAL_DOWNLOADS]: References official data feeds from CISA (Known Exploited Vulnerabilities catalog) and FIRST.org (EPSS API). These are established, well-known services for security professionals.
- [COMMAND_EXECUTION]: The execution environment is restricted to read-only file operations and searching (
Read,Grep,Glob), preventing the execution of arbitrary system commands.
Audit Metadata