Skills
skills/colonelpanic8/dotfiles/bump-overlay-versions/Gen Agent Trust Hub

bump-overlay-versions

Pass

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches version metadata from the official NPM registry and GitHub API. These requests target well-known technology services and are considered safe metadata retrieval operations.
  • [COMMAND_EXECUTION]: Executes system commands including npm view, curl, and just switch to manage package information and apply system configuration changes. These actions are consistent with the skill's intended purpose of managing a NixOS environment.
  • [PROMPT_INJECTION]: Exhibits a surface for indirect prompt injection by processing data from a user-controlled file.
  • Ingestion points: Reads and modifies the local configuration file ~/dotfiles/nixos/overlay.nix.
  • Boundary markers: Does not utilize explicit delimiters or 'ignore embedded instructions' markers when handling the file's content.
  • Capability inventory: Possesses file system access and shell execution capabilities (just, npm, curl).
  • Sanitization: There is no evidence of sanitization or strict schema validation for the data read from the Nix configuration file before it is processed.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 10, 2026, 01:28 AM