endor-sbom
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructions specify executing
npx -y endorctlto export and manage SBOM files.\n- [EXTERNAL_DOWNLOADS]: Theendorctlpackage is fetched from the npm registry using the npx command.\n- [REMOTE_CODE_EXECUTION]: Runningnpx -y endorctlallows for the download and execution of code from a remote repository at runtime. This is consistent with the intended use of the vendor's official tool.\n- [PROMPT_INJECTION]: The skill processes external SBOM files in formats like CycloneDX and SPDX, which creates a surface for indirect prompt injection.\n - Ingestion points: External SBOM files (CycloneDX, SPDX) used during export and comparison actions in SKILL.md.\n
- Boundary markers: No delimiters or boundary markers are used to separate the data from agent instructions.\n
- Capability inventory: The skill utilizes command execution via npx and resource access via the get_resource MCP tool.\n
- Sanitization: There is no evidence of sanitization or filtering of the content within the SBOM files.
Audit Metadata