ai-security-tooling
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill instructs the agent to fetch a complete list of resources from a remote URL (https://raw.githubusercontent.com/gmh5225/awesome-ai-security/refs/heads/main/README.md). This repository and user are not on the trusted sources list, making the source unverified.
- [PROMPT_INJECTION] (LOW): This skill exhibits a surface for Indirect Prompt Injection (Category 8).
- Ingestion points: External content is pulled from a third-party README.md file into the agent's context.
- Boundary markers: Absent. The skill provides no instructions to the agent to treat the fetched content as data only or to ignore embedded instructions.
- Capability inventory: The skill is intended to help organize and write content to local README.md files, giving it a write-capability that could be exploited by malicious content in the fetched file.
- Sanitization: Absent. There is no logic provided to filter or escape the fetched text before processing.
Audit Metadata