rust-skill-creator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION] (LOW): Vulnerable to indirect prompt injection from untrusted external data.
- Ingestion points: Documentation fetched from external URLs (docs.rs, doc.rust-lang.org) via
agent-browserorWebFetch. - Boundary markers: Absent. The skill extracts text from web pages and writes it directly into new markdown files without delimiters or safety warnings.
- Capability inventory: The skill performs directory creation (
mkdir), file writing (output redirection), and network requests. - Sanitization: No sanitization or validation of the fetched documentation content is performed before processing.
Audit Metadata