vx-provider-updater
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- COMMAND_EXECUTION (SAFE): The guide includes standard shell commands (cd, ls, cat, cargo) for project navigation and building. These commands are used as intended for developer workflows and testing.
- EXTERNAL_DOWNLOADS (SAFE): Examples use wget to fetch provider assets from GitHub, which is a trusted source. This is part of the manual troubleshooting and verification process.
- PROMPT_INJECTION (LOW): This finding identifies an indirect prompt injection surface. The guide documents the configuration for a tool (vx) that downloads and executes binaries from external sources. Evidence: 1. Ingestion: provider.toml specifies download sources. 2. Boundary markers: No delimiters or warnings for embedded instructions are specified in the config. 3. Capability inventory: The tool performs installation and execution of arbitrary binaries. 4. Sanitization: The guide does not describe any sanitization or validation of the downloaded content.
Audit Metadata