Skills
skills/automateyournetwork/netclaw/servicenow-change-workflow/Gen Agent Trust Hub

servicenow-change-workflow

Pass

Audited by Gen Agent Trust Hub on Mar 18, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes sp e c i f i c Pyt h o n scr i p t s v i a en v i r o nmen t v ar i a b l e s ($SERVICENOW_MCP_SCRIPT, $GAIT_MCP_SCRIPT, $PYATS_MCP_SCRIPT) using a st r u c t u r e d p ar a m e t e r i z e d command for m a t.
  • [PROMPT_INJECTION]: The skill pr o c e s s e s ext e r n al d at a f r o m ServiceNow inci d e n t s an d change reques t s, which p r e s e n t s a sur f a c e f o r ind i r e c t p r o m p t inject i o n.
  • Inges t i o n p o i n t s: lis t _ i nci d e n t s an d get _ c h ange _ req u e s t _ d e t ail s t o o l cal l s in SK I L L.md.
  • Bou n d a r y mar k e r s: Ab s e n t; n o exp l i c i t del i m i t e r s ar e use d t o sep a r a t e d at a ret r i e v e d f r o m ServiceNow fr o m agen t ins t r u c t i o n s.
  • Cap a b i l i t y inv e n t o r y: Sub p r o c e s s execu t i o n f o r net w o r k con f i g u r a t i o n (p y A T S) an d t i c k e t up d a t e s (ServiceNow).
  • San i t i z a t i o n: No inp u t v al i d a t i o n or san i t i z a t i o n of ServiceNow f i e l d con t e n t is sp e c i f i e d.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 18, 2026, 06:13 AM