Skills
skills/cookjohn/cnki-skills/cnki-journal-toc/Gen Agent Trust Hub

cnki-journal-toc

Pass

Audited by Gen Agent Trust Hub on Mar 3, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses evaluate_script to execute JavaScript within a browser tab for navigating the CNKI interface and extracting paper metadata.
  • [EXTERNAL_DOWNLOADS]: Automates the download of original TOC PDF files from the cnki.net and bar.cnki.net domains, which are recognized academic resources.
  • [PROMPT_INJECTION]: This skill possesses an indirect prompt injection surface because it processes untrusted paper titles and author data from external web pages. Ingestion points: Metadata is extracted from the web page using the evaluate_script logic in Step 2 of SKILL.md. Boundary markers: No boundary markers or 'ignore' instructions are present when the paper list is displayed. Capability inventory: The agent has full browser interaction capabilities through mcp__chrome-devtools. Sanitization: No sanitization or verification is performed on the text retrieved from the CNKI website.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 3, 2026, 04:57 PM