context7
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- External Downloads (LOW): The skill performs network operations using
curlto accesshttps://context7.com. This domain is not listed in the trusted external sources or whitelisted domains, though it is used for the skill's stated purpose of fetching documentation. - Indirect Prompt Injection (LOW): The skill fetches external documentation and processes it within the agent context, creating a potential vulnerability to embedded instructions. 1. Ingestion points: Results from API calls to
context7.cominSKILL.md. 2. Boundary markers: No explicit markers are used to separate untrusted documentation content from system instructions. 3. Capability inventory: Use ofcurlfor network access andjqfor data processing. 4. Sanitization: The skill does not perform any validation or sanitization on the fetched documentation text.
Audit Metadata