searching-text
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- COMMAND_EXECUTION (SAFE): The skill utilizes bash to run ripgrep and other common developer utilities like fzf, bat, and xargs. These operations are limited to local searches and are consistent with the skill's primary purpose. No evidence of malicious command injection or privilege escalation was found.
- PROMPT_INJECTION (SAFE): The instructions provide guidance on tool usage and do not attempt to override system prompts or bypass safety filters.
- INDIRECT_PROMPT_INJECTION (SAFE): Although the tool reads and processes file contents which could theoretically contain malicious instructions, this is a standard capability for search tools and the skill does not include any automated evaluation or execution of found content.
- EXTERNAL_DOWNLOADS (SAFE): No external dependencies are downloaded or referenced from untrusted sources; all tools mentioned are expected to be available in the local environment.
Audit Metadata