Skills
skills/colonelpanic8/dotfiles/disk-space-cleanup/Gen Agent Trust Hub

disk-space-cleanup

Fail

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: HIGHCOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses sudo -n to perform high-privilege system operations, including nix-collect-garbage, docker system prune, and podman system prune. It also executes ncdu as root to profile the entire filesystem.
  • [PROMPT_INJECTION]: The skill implements a self-modification mechanism in the "Learning Loop" section, instructing the agent to update its own instruction files (SKILL.md and references/ignore-paths.md) based on discovered system data.
  • Ingestion points: File system paths, mountpoints, and command patterns discovered during runtime via findmnt, du, and ncdu.
  • Boundary markers: Absent. Discovered strings are incorporated directly into markdown instruction files without delimiting markers or warnings.
  • Capability inventory: High-privilege command execution via sudo and the ability to download and execute external tools via nix run.
  • Sanitization: Absent. No validation or escaping is performed on discovered file paths before they are written to the skill files.
  • [EXTERNAL_DOWNLOADS]: The skill fetches and executes utility packages (such as cargo-sweep and ncdu) from the official Nixpkgs registry using the nix run command.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Mar 10, 2026, 01:28 AM