skills/jeremylongshore/claude-code-plugins-plus-skills/troubleshooting-guide-creator/Gen Agent Trust Hub
troubleshooting-guide-creator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill is granted 'Bash' permissions. While this is likely intended for documentation automation or environment inspection, the broad capability without specific constraints on input sources represents a minor security risk.
- [PROMPT_INJECTION] (LOW): Indirect Prompt Injection Surface:
- Ingestion points: The skill uses 'Read' and 'Grep' tools to ingest technical documentation data from the file system.
- Boundary markers: Absent. There are no instructions to the agent to ignore instructions embedded within the documentation it processes.
- Capability inventory: The skill can execute arbitrary commands via 'Bash' and modify files via 'Write' and 'Edit'.
- Sanitization: Absent. There is no logic provided to sanitize or validate content read from files before it influences agent actions or command parameters.
Audit Metadata