invoice-organizer
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes common shell utilities like find, mkdir, cp, and mv to traverse directories and organize files. These commands are used to implement the core functionality of the skill.
- [PROMPT_INJECTION]: The skill presents a surface for Indirect Prompt Injection (Category 8) as it interprets text extracted from user-supplied invoices and receipts.
- Ingestion points: Text extraction from PDFs and image formats (JPG, PNG) as described in the Instructions section of SKILL.md.
- Boundary markers: No specific boundary markers or instructions to disregard embedded commands in the extracted text are defined.
- Capability inventory: The skill uses bash for file system manipulation (mkdir, cp, mv).
- Sanitization: Filenames are sanitized by removing special characters, but the text content itself is not sanitized before being processed by the agent.
Audit Metadata