rank
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to run platform-specific shell commands (
date,mkdir,New-Item,Get-Date) to manage local directories and generate timestamps for file naming.- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because user-supplied domain names are interpolated directly into file system paths without validation. - Ingestion points: User input for the target 'domain' enters the process at runtime.
- Boundary markers: Absent; the user input is concatenated directly into the filename string.
- Capability inventory: File writing and shell command execution (SKILL.md).
- Sanitization: The instructions do not define any sanitization or validation logic for the 'domain' variable to prevent directory traversal or shell metacharacter usage.
Audit Metadata