clipboard
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to run platform-specific utilities (
pbcopy,xclip,wl-copy,clip.exe) via shell pipes. - [PROMPT_INJECTION]: The skill has a surface for indirect injection as it pipes external data into shell commands. 1. Ingestion points: Text provided by the user or from external sources intended for the clipboard (SKILL.md). 2. Boundary markers: No delimiters or sanitization instructions are provided to the agent to handle special shell characters (e.g., ;, |,
) in the input text. 3. Capability inventory: Executes system clipboard utilities via shell pipes (echo -n ... | command`). 4. Sanitization: Absent; the skill lacks guidance on escaping input to prevent command injection.
Audit Metadata