registry-search
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches node and extension metadata from the official ComfyUI registry at api.comfy.org.
- [PROMPT_INJECTION]: The skill retrieves and processes data from an external registry where third-party developers can submit content, creating a potential surface for indirect prompt injection.
- Ingestion points: Node metadata and descriptions retrieved from api.comfy.org via the search tool in SKILL.md.
- Boundary markers: The skill configuration does not specify any delimiters to separate external data from system instructions.
- Capability inventory: The agent is permitted to use the Bash tool as defined in the allowed-tools field of SKILL.md.
- Sanitization: No explicit sanitization or filtering of the content returned from the registry search is described in the skill definition.
Audit Metadata