bash-script-generator
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted user requirements to generate executable Bash scripts, creating a surface for indirect prompt injection.\n
- Ingestion points: User requirements captured in Stage 1 of the skill's execution model.\n
- Boundary markers: The skill does not define explicit delimiters or instructions to ignore embedded commands during requirement interpolation.\n
- Capability inventory: The skill can write files to the disk and execute local scripts (e.g., generate_script_template.sh).\n
- Sanitization: The generator includes checks against path traversal for template names but lacks sanitization for the resulting business logic.\n- [DYNAMIC_EXECUTION]: The skill generates shell scripts and provides a mechanism to automatically invoke validation or CI checks, leading to the execution of dynamically created code.\n- [PRIVILEGE_ESCALATION]: The helper script generate_script_template.sh applies execute permissions (chmod u+x) to the output files. While functional, this represents a permission change on dynamically generated files.
Audit Metadata