update-gitignore
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches configuration templates from the well-known Toptal Gitignore API via curl.
- [COMMAND_EXECUTION]: Executes system commands including
unameandgitto identify the operating environment and repository status. - [DATA_EXFILTRATION]: Reads project directory structure and local file metadata to identify development technologies, which are then used as parameters for the external API request.
- [PROMPT_INJECTION]:
- Ingestion points: The skill uses
Read,Glob, andgittools to scan the local repository for technology detection, which serves as a surface for indirect prompt injection. - Boundary markers: The prompt template lacks explicit delimiters or instructions to ignore potential malicious content within the scanned files.
- Capability inventory: The agent has filesystem write permissions (
Write,Edit) and general network access (Bash(curl:*)). - Sanitization: No explicit validation or filtering is performed on the strings detected from the environment before they are interpolated into the API request.
Audit Metadata