Skills
skills/jh941213/my-claude-code-asset/stitch-loop/Gen Agent Trust Hub

stitch-loop

Warn

Audited by Gen Agent Trust Hub on Mar 9, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: The 'baton' system reads instructions from 'next-prompt.md' to drive the autonomous loop. This creates an indirect prompt injection surface where malicious instructions could be placed in the control file or ingested via the generated web content.
  • [COMMAND_EXECUTION]: The skill uses the 'Bash' tool to perform file operations and start local development servers (e.g., 'npx serve'). This allows for arbitrary command execution on the host system.
  • [EXTERNAL_DOWNLOADS]: The skill downloads HTML and image assets from Stitch's download URLs. These assets are then saved directly to the local filesystem and integrated into the project.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 9, 2026, 07:28 PM