t2000-repay
Warn
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@t2000/clipackage from NPM vianpx. This package is not from a trusted organization or a recognized vendor associated with the skill author. - [COMMAND_EXECUTION]: The skill executes the
t2000command-line utility via the shell to process debt repayments. - [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because the
<amount>and[asset]parameters are interpolated into a shell command without documented sanitization or escaping. Ingestion points: The<amount>and[asset]arguments provided to the skill in SKILL.md. Boundary markers: None present to delimit user input from the command structure. Capability inventory: Subprocess execution for shell commands. Sanitization: None detected in the provided skill definition.
Audit Metadata