Skills
skills/cloudsen/eliteforge-skills/qingtui-message-sender/Gen Agent Trust Hub

qingtui-message-sender

Pass

Audited by Gen Agent Trust Hub on Mar 6, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The script executes macOS utilities /usr/sbin/screencapture, /usr/bin/mdfind, and /usr/bin/open to automate application interactions.
  • [COMMAND_EXECUTION]: Screenshots used for recipient verification are stored in the system's temporary directory and deleted after processing to minimize data exposure.
  • [PROMPT_INJECTION]: User-provided strings for contacts and messages are ingested and processed for UI automation.
  • Ingestion points: contact and message parameters from SKILL.md.
  • Boundary markers: The Swift script performs OCR matching of the chat header against the contact parameter to ensure the correct session is active.
  • Capability inventory: UI automation (keyboard/mouse simulation) and screen capture.
  • Sanitization: Whitespace normalization is applied to input strings within the Swift logic.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 6, 2026, 10:33 AM