create-slash-command
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- PROMPT_INJECTION (LOW): The skill possesses an attack surface for indirect prompt injection as it generates markdown templates by interpolating command-line arguments. If an attacker can control the input to these scripts, they could inject malicious instructions into the generated command files.
- Ingestion points: The 'command_name' and 'workflow_name' arguments in 'scripts/create_command.py'.
- Boundary markers: Absent; the script interpolates arguments directly into the 'COMMAND_TEMPLATE' string.
- Capability inventory: The script performs local file system write operations via 'Path.write_text' and creates symlinks via 'Path.symlink_to'.
- Sanitization: Absent; input arguments are not validated or escaped before being written to files.
Audit Metadata