rename
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- Indirect Prompt Injection (LOW): The skill processes untrusted user input ($ARGUMENTS) and provides access to powerful system tools, creating a surface for potential injection.
- Ingestion points: User-provided arguments are directly parsed and used to invoke tools in SKILL.md.
- Boundary markers: Absent; there are no delimiters or instructions to treat argument content as purely inert data.
- Capability inventory: The skill is granted access to the Bash tool and specific filesystem tools (rename_album, rename_track).
- Sanitization: No validation, escaping, or sanitization logic for input strings is included in the instructions.
Audit Metadata