weather
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches weather data from wttr.in, which is a widely recognized service for terminal-based weather reporting. This activity is consistent with the skill's primary purpose.
- [COMMAND_EXECUTION]: Executes curl commands to retrieve data in different formats (text, JSON, images). The commands are standard and used for network communication with the weather service.
- [PROMPT_INJECTION]: The skill accepts user-provided location data (cities or airport codes) to construct the weather query. While this presents a surface for indirect prompt injection, it is the core functionality of the weather retrieval process and relies on the agent to handle input safely.
Audit Metadata