Skills
skills/azhi-ss/academic-figure-skills/Academic Repo Analyzer/Gen Agent Trust Hub

Academic Repo Analyzer

Pass

Audited by Gen Agent Trust Hub on Apr 12, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes bash to execute commands like find, cat, and grep for repository inspection.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted data from local files. Evidence: 1. Ingestion points: Repository files (README.md, source code, configs) read via bash in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: Bash tool used for file system traversal and reading. 4. Sanitization: No validation or escaping of file content is performed.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 12, 2026, 09:59 AM