Skills
skills/curiositech/some_claude_skills/dag-skill-registry/Gen Agent Trust Hub

dag-skill-registry

Pass

Audited by Gen Agent Trust Hub on Feb 19, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [Prompt Injection] (SAFE): No direct attempts to override system instructions or bypass safety filters were detected in the prompt or code snippets.
  • [Indirect Prompt Injection] (LOW): The skill identifies a mechanism for ingesting untrusted data from the file system, which could be exploited to influence agent behavior.
  • Ingestion points: The loadRegistry function uses glob to find and readFile to ingest content from multiple SKILL.md files.
  • Boundary markers: The provided logic does not include delimiters or specific instructions to the agent to ignore potential commands embedded within the parsed metadata.
  • Capability inventory: The skill has access to sensitive tools including Read, Write, Edit, Glob, and Grep.
  • Sanitization: No sanitization or validation logic is shown for the parseSkillFile process to prevent instruction injection from the cataloged files.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 19, 2026, 08:36 PM