skills/jeremylongshore/claude-code-plugins-plus-skills/ascii-art-diagram-creator/Gen Agent Trust Hub
ascii-art-diagram-creator
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHCOMMAND_EXECUTIONNO_CODEPROMPT_INJECTION
Full Analysis
- [Indirect Prompt Injection] (HIGH): The skill possesses a high-risk capability tier combined with an external ingestion surface.
- Ingestion points: User-provided diagram descriptions or external content mentioned in requests (SKILL.md).
- Boundary markers: Absent. There are no instructions to delimit or ignore instructions within the data being processed.
- Capability inventory: The frontmatter explicitly requests
Bash,Write, andEdittools (SKILL.md). - Sanitization: None. The lack of logic to sanitize inputs means an attacker could embed shell commands or malicious file modifications inside a 'diagram' request that the agent might execute.
- [No Code] (LOW): The skill contains metadata and descriptions but lacks any implementation scripts. Requesting
BashandWriteprivileges without providing specific scripts to perform those tasks suggests a reliance on the agent's raw capabilities, which bypasses the safety controls usually found in well-defined skill scripts.
Recommendations
- AI detected serious security threats
Audit Metadata