Skills
skills/jg-chalk-io/nora-livekit/moai-baas-foundation/Gen Agent Trust Hub

moai-baas-foundation

Pass

Audited by Gen Agent Trust Hub on Mar 2, 2026

Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: The skill logic processes external documentation and pricing data from provider websites to generate recommendations, presenting an indirect prompt injection surface.
  • Ingestion points: External content is brought into the agent's context through the WebFetch tool and mcp__context7 documentation retrieval functions in SKILL.md.
  • Boundary markers: There are no explicit markers or guardrail instructions provided to isolate the fetched external content from the agent's core instructions.
  • Capability inventory: The skill allows use of Bash, WebFetch, and Read tools, providing a wide range of actions that could be influenced by injected instructions.
  • Sanitization: No validation or filtering of the content retrieved from external sources is implemented.
  • [EXTERNAL_DOWNLOADS]: The skill fetches configuration data, feature updates, and documentation from well-known technology services including Supabase, Firebase, and Auth0 to ensure architectural accuracy.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 2, 2026, 05:14 PM