Skills
skills/fatfingererr/macro-skills/analyze-silver-miner-metal-ratio/Gen Agent Trust Hub

analyze-silver-miner-metal-ratio

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION] (LOW): Indirect Prompt Injection Surface.
  • Ingestion points: Untrusted user input can enter the system through parameters like miner_proxy and metal_proxy defined in workflows/analyze.md and references/input-schema.md.
  • Boundary markers: The workflow lacks explicit boundary markers or instructions to the agent to sanitize or validate these strings before interpolation into shell commands.
  • Capability inventory: The skill utilizes shell command execution via python scripts/ratio_analyzer.py to process the data (File: workflows/analyze.md).
  • Sanitization: There is no evidence in the documentation of input escaping or validation being performed on the variables {miner_proxy} or {metal_proxy} before they are passed to the shell, which could lead to command injection if the underlying Python script is not robust.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:18 PM