Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/soc2-compliance-checker/Gen Agent Trust Hub

soc2-compliance-checker

Fail

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: HIGHPROMPT_INJECTIONCOMMAND_EXECUTIONNO_CODE
Full Analysis
  • [PROMPT_INJECTION] (HIGH): The skill is highly vulnerable to Indirect Prompt Injection (Category 8).
  • Ingestion points: The skill is designed to process external compliance artifacts, configurations, and code to perform SOC2 checks.
  • Boundary markers: There are no defined boundary markers or system instructions to ignore embedded commands within the analyzed data.
  • Capability inventory: The skill is explicitly allowed to use Bash, Write, and Edit tools.
  • Sanitization: No sanitization or validation logic is specified for the input data before it is processed by high-privilege tools.
  • Risk: An attacker could embed malicious instructions within a file being 'checked' for compliance, leading the agent to execute arbitrary commands via Bash.
  • [COMMAND_EXECUTION] (HIGH): The skill metadata requests access to the Bash tool. In the context of an agent reading external files, this allows for potential shell command injection if the agent is coerced by the data it reads.
  • [NO_CODE] (INFO): The provided skill consists only of a markdown configuration file with no supporting scripts or executable logic, making it difficult to verify the safety of its actual implementation.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 16, 2026, 03:24 AM