treatment-plans
Warn
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- Privilege Escalation (MEDIUM): The file 'assets/STYLING_QUICK_REFERENCE.md' recommends using 'sudo' for installing LaTeX packages via 'tlmgr'. While common for system-level TeX Live management, providing 'sudo' instructions is a high-privilege suggestion.\n- Unverifiable Dependencies (LOW): The skill references and provides instructions to download multiple external LaTeX packages from the TeX archive (CTAN). These are standard dependencies for the styling functionality.\n- Indirect Prompt Injection (LOW): The script 'scripts/check_completeness.py' ingests and processes user-provided LaTeX files for validation. Evidence Chain:\n
- Ingestion points: File content is read via a path provided as a CLI argument to the script.\n
- Boundary markers: None present.\n
- Capability inventory: The script is limited to regex matching and printing to standard output; it does not contain subprocess calls, network operations, or dynamic code execution.\n
- Sanitization: None.
Audit Metadata