yao-gametheory-skill

Pass

Audited by Gen Agent Trust Hub on May 18, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill instructions and logical frameworks focus entirely on game theory analysis and strategic modeling. No prompt injection attempts or malicious overrides were found in the skill metadata or instructional content.
  • [SAFE]: The Python script scripts/generate_report_bundle.py was analyzed for malicious behavior. It implements standard reporting logic, using escaping for HTML and DOCX generation to prevent content injection. It does not perform any dangerous operations such as arbitrary command execution, network requests, or sensitive file access.
  • [SAFE]: The skill lacks data exfiltration capabilities. It processes user-supplied strategic data locally to produce document artifacts. No network exfiltration or credential harvesting patterns were detected.
  • [SAFE]: Dependency analysis confirmed the use of standard libraries (python-docx, weasyprint) for document generation. No untrusted or remote code downloads were identified.
  • [SAFE]: The risk of indirect prompt injection is mitigated through structured data processing and sanitization. Ingestion points: Input JSON files. Boundary markers: Absent. Capability inventory: Local file writing. Sanitization: Present (escaping in the generation script).
Audit Metadata
Risk Level
SAFE
Analyzed
May 18, 2026, 05:46 AM
Security Audit — agent-trust-hub — yao-gametheory-skill