Skills
skills/glittercowboy/taches-cc-resources/build-macos-apps/Gen Agent Trust Hub

build-macos-apps

Pass

Audited by Gen Agent Trust Hub on Mar 5, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses shell commands such as xcodebuild and open to compile, test, and launch native binaries. While intended for development, this provides a mechanism to execute code generated from untrusted user inputs.
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it converts user descriptions into executable Swift code without sanitization. Ingestion points: User requests for app features or debugging help. Boundary markers: None. Capability inventory: Code compilation (xcodebuild) and binary execution (open). Sanitization: No validation or sanitization is performed on the generated code before it is built and launched.
  • [COMMAND_EXECUTION]: The build instructions reference xcsift in a pipe command (xcodebuild build 2>&1 | xcsift). This utility is not a standard part of the macOS or Xcode toolchain, and its safety cannot be verified as no source or installation method is provided within the skill.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 5, 2026, 05:36 AM