social-insurance-review
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXPOSURE]: The skill is designed to process sensitive payroll and HR information including employee names, IDs, and salary bases. This is the intended primary purpose of the skill for HR auditing. No evidence of unauthorized exfiltration through network calls or remote endpoints was detected.
- [INDIRECT_PROMPT_INJECTION]: The skill ingests data from external payroll and HR sources. While this represents a theoretical attack surface for indirect prompt injection, the skill lacks dangerous capabilities such as shell command execution or dynamic code evaluation that would allow an attacker to exploit the agent beyond the generation of the audit report.
- [NO_CODE]: The skill consists entirely of markdown instructions and report templates. It does not include scripts, binaries, or instructions to install third-party dependencies.
Audit Metadata