Skills
skills/mamba-mental/agent-skill-manager/docs-seeker/Gen Agent Trust Hub

docs-seeker

Warn

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTIONDATA_EXFILTRATION
Full Analysis
  • EXTERNAL_DOWNLOADS (MEDIUM): The skill instructs the user or agent to globally install the 'repomix' npm package and clones remote repositories from GitHub. These sources and tools are not part of the trusted organization list and present a supply chain risk.
  • COMMAND_EXECUTION (MEDIUM): Executes shell commands including 'npm install', 'git clone', and 'repomix' with arguments potentially derived from user input or search results.
  • PROMPT_INJECTION (LOW): The skill is susceptible to indirect prompt injection. Ingestion points: Fetches documentation content from arbitrary URLs and GitHub repositories. Boundary markers: Absent in instructions to Explorer/Researcher agents. Capability inventory: Spawns sub-agents, executes shell commands, and accesses the network. Sanitization: No evidence of sanitization for the documentation content before processing.
  • DATA_EXFILTRATION (LOW): Prioritizes routing documentation requests and topic metadata through 'context7.com', a non-whitelisted third-party service.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 17, 2026, 06:36 PM