evaluate-report
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill processes contents from evaluation files like benchmark.json and history.json. This is a potential surface for indirect prompt injection if those files are controlled by an untrusted source.
- Ingestion points: Reads local JSON files within the plugin directory based on the target argument.
- Boundary markers: No delimiters or warnings are used when outputting file content to the user.
- Capability inventory: The skill has permission to use cat, jq, find, ls, and Read.
- Sanitization: No explicit validation or sanitization of the JSON content is performed before display.
- [COMMAND_EXECUTION]: The skill utilizes bash commands such as cat, jq, and find to interact with the filesystem. These operations are intended to locate and read specific benchmark files and are consistent with the skill's purpose.
Audit Metadata