querying-yaml
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- COMMAND_EXECUTION (LOW): The skill promotes shell pipelines (e.g.,
yq | xargs) that process data from local YAML files, which could lead to command injection if files are maliciously crafted. - EXTERNAL_DOWNLOADS (LOW): Examples like
docker pullinvolve downloading resources from external registries based on extracted YAML data. - INDIRECT PROMPT INJECTION (LOW): The skill establishes a data-processing pipeline with significant capabilities. Ingestion points: Local YAML files. Boundary markers: Absent. Capability inventory: Shell access, network utility (
nc), anddocker. Sanitization: Absent.
Audit Metadata