related-skill
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (MEDIUM): The skill provides functionality to download and install external packages via the 'npx skills add' command from the 'inference.sh' registry. This source is not included in the trusted organizations or repositories list, making the downloaded assets unverifiable.
- [REMOTE_CODE_EXECUTION] (MEDIUM): The installation process involves pulling and potentially executing scripts or configurations from a remote server. This constitutes a high-risk pattern when directed at untrusted third-party domains.
- [COMMAND_EXECUTION] (LOW): The skill uses the Bash tool to execute the 'npx skills' utility. While the command scope is restricted by the tool definition, the utility itself performs sensitive system-level changes by adding new executable skills.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill creates a surface for tool output poisoning. 1. Ingestion points: Remote search results from 'npx skills search'. 2. Boundary markers: Absent. 3. Capability inventory: Permission to install new skills via 'npx skills add'. 4. Sanitization: None identified for registry metadata.
Audit Metadata