Skills
skills/ajbcoding/claude-skill-eval/moai-cc-commands/Gen Agent Trust Hub

moai-cc-commands

Pass

Audited by Gen Agent Trust Hub on Mar 1, 2026

Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
  • [NO_CODE]: The skill consists exclusively of Markdown documentation and structural templates. No executable code or scripts were found within the provided files.\n- [PROMPT_INJECTION]: The skill documents a surface for indirect prompt injection by defining a pattern for commands that ingest untrusted data.\n
  • Ingestion points: External command arguments (param1, param2) defined in templates/command-template.md.\n
  • Boundary markers: No delimiters or instructions to ignore embedded commands are present in the provided template.\n
  • Capability inventory: The skill body in SKILL.md allows Bash, and the command template lists Read, Write, and Task tools.\n
  • Sanitization: No input validation, escaping, or sanitization patterns are included for handling external arguments.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 1, 2026, 01:06 AM