dns
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION] (HIGH): The skill presents an indirect prompt injection surface. Ingestion points: Domain names and IP addresses used as arguments for dig, nslookup, and host. Boundary markers: Absent. Capability inventory: Shell command execution and modification of system configuration files like /etc/hosts. Sanitization: Absent.
- [EXTERNAL_DOWNLOADS] (LOW): Skill performs runtime package installation via apt and yum. These are from standard repositories but represent a runtime dependency.
- [DATA_EXFILTRATION] (HIGH): The skill accesses sensitive system files including /etc/hosts and /etc/resolv.conf, exposing internal network structure and host mappings to the agent context.
Recommendations
- AI detected serious security threats
Audit Metadata