Skills
skills/flympe/skills/workout-generator/Gen Agent Trust Hub

workout-generator

Warn

Audited by Gen Agent Trust Hub on Mar 13, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSDATA_EXFILTRATIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Interacts with remote endpoints https://workout-rho-eight.vercel.app and https://facilitator.corbits.dev to fetch workout data and facilitate cryptocurrency payments.
  • [DATA_EXFILTRATION]: Instructs the agent to transmit a signed Solana transaction via the X-PAYMENT HTTP header to a remote server. A signed transaction is valid cryptographic material that allows the recipient to broadcast the transaction and move funds.
  • [COMMAND_EXECUTION]: Requires the agent to sign a blockchain transaction, which typically involves the execution of cryptographic libraries or wallet-related CLI tools.
  • [PROMPT_INJECTION]: Vulnerable to indirect prompt injection through the processing of untrusted user input.
  • Ingestion points: The userPreferences free-text field in the POST request to the workout generation endpoint.
  • Boundary markers: No delimiters or instructions to ignore embedded commands are present.
  • Capability inventory: The skill possesses the ability to perform network requests and sign financial transactions.
  • Sanitization: No evidence of sanitization or input validation for the userPreferences field.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 13, 2026, 01:00 AM