moto-hses-usage
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Indirect Prompt Injection (LOW): The skill possesses a surface for indirect prompt injection as it ingests untrusted data from an external robot controller which could influence agent behavior.
- Ingestion points: File content retrieved via client.receive_file() in references/examples/file_operations.rs and string variables via client.read_string() in references/examples/string_variable_operations.rs.
- Boundary markers: None. The examples do not implement delimiters or instructions to ignore embedded commands in the data retrieved from the controller.
- Capability inventory: The skill includes high-impact capabilities such as starting robot jobs (start_job), selecting jobs (select_job), writing I/O signals (write_io), and file manipulation (send_file, delete_file).
- Sanitization: No sanitization or validation of the content retrieved from the robot controller is performed before it is processed by the agent.
Audit Metadata