defuddle
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the defuddle-cli package from the NPM registry.
- [COMMAND_EXECUTION]: Executes the defuddle command-line interface to parse content from provided URLs.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it ingests untrusted data from external websites. * Ingestion points: Web content fetched via the url parameter in the defuddle parse command. * Boundary markers: None identified; the skill does not explicitly instruct the agent to ignore instructions embedded in the fetched content. * Capability inventory: The agent can execute the CLI tool and potentially save output to the file system using the -o flag. * Sanitization: No sanitization or filtering of the remote content is specified before the agent processes the resulting markdown.
Audit Metadata