omni-admin
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes
curlcommands to interact with the Omni REST API. These commands perform administrative operations such as user provisioning, group management, and permission configuration, all of which are consistent with the skill's intended administrative purpose. - [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection because it processes data retrieved from external API responses.
- Ingestion points: The agent ingests data from
$OMNI_BASE_URLAPI responses as seen in several examples in SKILL.md. - Boundary markers: No explicit boundary markers or instructions to ignore instructions within the API data are present.
- Capability inventory: The skill has the capability to perform sensitive administrative actions (e.g., deleting users, changing permissions) via the
curltool. - Sanitization: No explicit input validation or sanitization of the API-returned content is specified in the skill instructions.
Audit Metadata