Skills
skills/kaiboo404/agent-skills-with-project-template/skill-researcher/Gen Agent Trust Hub

skill-researcher

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • PROMPT_INJECTION (LOW): Potential for indirect prompt injection via subagent-generated metadata.\n
  • Ingestion points: Stage 6 reads .return-meta.json generated by a subagent.\n
  • Boundary markers: None. Data is treated as trusted JSON.\n
  • Capability inventory: Bash (jq, git), Task tool (subagent spawning), Edit tool.\n
  • Sanitization: Stage 1 validates task_number using jq --argjson, which effectively prevents injection into subsequent shell-interpolated jq filters. The skill generally uses jq --arg for variable interpolation.\n- COMMAND_EXECUTION (SAFE): Bash commands are used for state management and git operations. The skill follows best practices by using argument passing for JSON manipulation rather than raw string concatenation where possible.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 09:48 PM