find-skills
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides instructions to execute npx skills commands for searching and installing software packages.
- [EXTERNAL_DOWNLOADS]: The skill facilitates the download of third-party agent skills from GitHub and the skills.sh registry.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection from untrusted search results. 1. Ingestion points: The output of the npx skills find command is processed by the agent. 2. Boundary markers: No delimiters are specified to separate search results from system instructions. 3. Capability inventory: The skill has the capability to install arbitrary external code using the npx skills add command. 4. Sanitization: There is no logic provided to sanitize or validate the safety of search results before they are presented or installed.
Audit Metadata