Skills
skills/cadrianmae/claude-marketplace/integration/Gen Agent Trust Hub

integration

Pass

Audited by Gen Agent Trust Hub on Feb 28, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses Bash to perform file system operations, including scanning directories and writing to configuration files.
  • Evidence: Uses Bash tool to iterate over ~/.claude/marketplaces/cadrianmae-claude-marketplace/plugins/ and write to ~/.claude/CLAUDE.md and ./CLAUDE.md.
  • Context: This behavior is the primary intended purpose of the skill for automating integration.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection by processing data from external plugins and including it in the agent's core instructions.
  • Ingestion points: Reads plugin.json, SKILL.md, and commands/*.md from subdirectories within ~/.claude/marketplaces/cadrianmae-claude-marketplace/plugins/.
  • Boundary markers: The content is formatted into a new markdown file (marketplace-plugins.md) which is then imported into CLAUDE.md using the @ import syntax.
  • Capability inventory: Uses Bash, Write, and Edit to modify the agent's instruction files (CLAUDE.md), which effectively escalates the priority of the ingested content.
  • Sanitization: No sanitization or validation is performed on the content read from the plugin files before it is appended to the instruction-bearing CLAUDE.md file.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 28, 2026, 11:03 PM