Skills
AGENT LAB: SKILLS
skills/inference-sh-3/skills/related-skill/Gen Agent Trust Hub

related-skill

Warn

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION] (MEDIUM): The skill defines allowed-tools: Bash(npx skills *). This wildcard permission allows the agent to execute any subcommand of the 'skills' CLI, including those that modify the system or install new software, without further restricted scoping.
  • [EXTERNAL_DOWNLOADS] (MEDIUM): The skill provides instructions for npx skills add, which downloads and installs external packages from the inference.sh registry. As this source is not on the trusted organizations list, these dependencies are considered unverifiable.
  • [REMOTE_CODE_EXECUTION] (MEDIUM): By design, the skill's purpose is to fetch and install new capabilities (code) at runtime. This creates a remote code execution vector where the security of the agent becomes dependent on the integrity of the third-party registry and the specific packages requested.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 17, 2026, 10:45 PM