Skills
skills/gannonh/kata-orchestrator/kata-whats-new/Gen Agent Trust Hub

kata-whats-new

Warn

Audited by Gen Agent Trust Hub on Apr 10, 2026

Risk Level: MEDIUMDATA_EXFILTRATION
Full Analysis
  • [DATA_EXFILTRATION]: Detected a URL mismatch consistent with typosquatting. The skill's internal logic fetches from 'github.com/gannonh/kata', but the Markdown output provided to the user links to 'github.com/gannnonh/kata'. This character substitution is a known pattern for redirecting users to potentially malicious or impersonated accounts.
  • [EXTERNAL_DOWNLOADS]: The skill uses the WebFetch tool to download a CHANGELOG.md file from a remote GitHub repository for version comparison.
  • [COMMAND_EXECUTION]: Employs the 'cat' command to read local versioning files ('VERSION' and 'CHANGELOG.md') within the plugin environment to determine the installed status.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 10, 2026, 12:00 PM