Skills
skills/mary4data/clawbee/price-hunter/Gen Agent Trust Hub

price-hunter

Warn

Audited by Gen Agent Trust Hub on Mar 6, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [DYNAMIC_EXECUTION]: The script scripts/save-price.sh and the commands in SKILL.md perform database operations by interpolating raw variables into SQL strings without sanitization or parameterization, creating a SQL injection vulnerability. Evidence: the sqlite3 call in scripts/save-price.sh and the /prices best command template.
  • [INDIRECT_PROMPT_INJECTION]: The skill is susceptible to indirect injection because it ingests untrusted data from web searches and processes it using vulnerable database scripts.
  • [INDIRECT_PROMPT_INJECTION]: Mandatory Evidence Chain: 1. Ingestion points: Web search results for grocery prices (referenced in SKILL.md). 2. Boundary markers: Absent; no delimiters or warnings are used to handle untrusted search content. 3. Capability inventory: Database write access via scripts/save-price.sh and read access via shell-executed SQL queries. 4. Sanitization: Absent; data is directly concatenated into shell and SQL commands.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 6, 2026, 02:14 PM