gpd-id-resolver
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides instructions and examples for executing the
gpdCLI tool to manage app tracks, releases, monetization, and permissions on the Google Play Store. - [PROMPT_INJECTION]: The skill utilizes a pattern that could be susceptible to indirect prompt injection by processing external command outputs.
- Ingestion points: The agent ingests data returned from
gpdcommands, such as track names and product lists. - Boundary markers: There are no explicit markers or instructions used to delimit the tool output from the agent context.
- Capability inventory: The skill enables shell command execution via the
gpdtool. - Sanitization: No input validation or output sanitization mechanisms are described for the data processed from the tool.
Audit Metadata