overleaf
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs the 'olcli' utility from the author's official Homebrew tap or NPM package registry, which is a standard procedure for this vendor resource.\n- [COMMAND_EXECUTION]: Utilizes the 'olcli' binary to perform file synchronization and project management tasks through terminal commands.\n- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection via the processing of external project files retrieved from Overleaf.\n
- Ingestion points: Files (LaTeX, BibTeX, and others) are ingested via the 'pull', 'sync', and 'download' operations defined in 'src/cli.ts' and 'src/client.ts'.\n
- Boundary markers: No specific delimiters or safety instructions are implemented to differentiate project file data from system prompts.\n
- Capability inventory: The skill possesses capabilities for local file system modification and network interaction with Overleaf's API for uploading or compiling content.\n
- Sanitization: No sanitization or content filtering is applied to the file data retrieved from the remote Overleaf service.
Audit Metadata