Skills
skills/luongnv89/skills/idea-validator/Gen Agent Trust Hub

idea-validator

Pass

Audited by Gen Agent Trust Hub on Apr 30, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes multiple shell commands using the git binary to manage repository synchronization, including git fetch, git pull, git push, and git stash operations.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface.
  • Ingestion points: Ingests untrusted data from the internet via the WebSearch tool (Phase 3) and from user-provided arguments.
  • Boundary markers: Lacks specific boundary markers or instructions to isolate the agent from potentially malicious instructions embedded in web search results (e.g., hidden instructions in competitor websites).
  • Capability inventory: Possesses file write access to the local filesystem and the ability to commit and push changes to a remote git repository.
  • Sanitization: Does not perform sanitization or validation on data retrieved from external web sources before processing it and writing it to the repository.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 30, 2026, 05:44 PM