webnovel-learn
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Bash tool for path resolution and environment variable management within the project directory. This is standard behavior for its described task.
- [DATA_EXFILTRATION]: The skill accesses project-specific state and memory files. It does not demonstrate any intent or capability to transmit this data to external servers or access unrelated sensitive system files.
- [PROMPT_INJECTION]: Analyzed for indirect prompt injection risks.
- Ingestion points: User-provided strings are extracted via the
/webnovel-learncommand in SKILL.md. - Boundary markers: The instructions do not specify the use of delimiters or warnings to ignore embedded instructions in the user input.
- Capability inventory: The skill has access to Read, Write, and Bash tools as defined in the frontmatter.
- Sanitization: There is no mention of sanitizing or escaping the user-provided content before writing it to the project_memory.json file.
Audit Metadata