tv-economy-respawn
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: LOWCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- COMMAND_EXECUTION (LOW): The skill uses 'rg' and 'sed' to search and read specific lines from files in the 'src/' directory. Evidence: Workflow defines commands to read src/step.nim, src/items.nim, and src/types.nim. Risk: Limited as commands are hardcoded and intended for read-only analysis.
- PROMPT_INJECTION (LOW): The skill exhibits an indirect prompt injection surface. 1. Ingestion points: src/step.nim, src/items.nim, src/types.nim. 2. Boundary markers: Absent. 3. Capability inventory: Shell command execution (read-only), summarization. 4. Sanitization: Absent. Impact: An attacker with control over the source files could potentially influence the agent's summary.
Audit Metadata