homebrew
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides the official installation command for Homebrew, which fetches a script from the Homebrew organization's repository on GitHub. This is documented as a prerequisite and represents a neutral reference to a well-known, trusted technology service.
- [COMMAND_EXECUTION]: The helper script
scripts/brew.shinterfaces directly with the system shell to manage software. It correctly utilizes the"$@"bash variable to handle user-provided package names as distinct arguments, effectively preventing arbitrary shell command injection within the script execution context. - [INDIRECT_PROMPT_INJECTION]: The skill is designed to process package names and repository targets derived from user requests (Ingestion Point: package name parameters in
SKILL.md). While the implementation is technically robust against shell injection, the capability to install and tap into new software sources (Capability:brew installandbrew tapinscripts/brew.sh) is an inherent surface for indirect instructions. There are no specific boundary markers used in the prompt interpolation to distinguish between intent and data, though the shell-level sanitization provided by the script's quoting is present.
Audit Metadata