macos-screenshot
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the native macOS 'screencapture' binary to take screen captures, which is a legitimate use of a built-in system utility.
- [SAFE]: Data is stored locally in the '/tmp' directory with no evidence of remote exfiltration, unauthorized network access, or persistence mechanisms.
- [PROMPT_INJECTION]: The skill establishes an indirect prompt injection surface by processing screen content into image files that may be analyzed by an AI. 1. Ingestion point: Local image files. 2. Boundary markers: None. 3. Capability inventory: Local command execution (screencapture). 4. Sanitization: None.
Audit Metadata