Skills
skills/jmagar/claude-homelab/prowlarr/Gen Agent Trust Hub

prowlarr

Pass

Audited by Gen Agent Trust Hub on Apr 19, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The SKILL.md file uses coercive and authoritative language ('MANDATORY SKILL INVOCATION', 'YOU MUST', 'Failure ... violates your operational requirements') to override the agent's decision-making logic regarding tool use.
  • [PROMPT_INJECTION]: The skill presents untrusted data from external Prowlarr indexers to the agent without sanitization, exposing it to indirect prompt injection.
  • Ingestion points: External search results retrieved via scripts/prowlarr-api.sh.
  • Boundary markers: None; external data is presented directly to the agent's context.
  • Capability inventory: Shell command execution (curl, jq) via zsh-tool.
  • Sanitization: None; data is processed for formatting but field contents are not validated for instructions.
  • [COMMAND_EXECUTION]: The script scripts/prowlarr-api.sh executes bash commands including curl and jq to interact with the local Prowlarr service.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 19, 2026, 02:57 AM