create-aptos-project
Warn
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill constructs shell commands by interpolating user-controlled values like project names and network types, such as in
npx create-aptos-dapp <project-name>. This presents a command injection vulnerability if the inputs are not sanitized to remove shell metacharacters. - [EXTERNAL_DOWNLOADS]: The skill utilizes
npxto download and execute thecreate-aptos-dapppackage from the NPM registry, representing a runtime dependency on untrusted third-party code. It also referencesgeomi.dev, a vendor-specific resource for author 'iskysun96'. - [PROMPT_INJECTION]: The skill uses the metadata field
priority: criticalto attempt to influence the agent's task prioritization logic, which is a form of metadata poisoning/instructional override.
Audit Metadata