Skills
skills/mitsuhiko/agent-commands/ghidra/Gen Agent Trust Hub

ghidra

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • COMMAND_EXECUTION (LOW): The skill executes the analyzeHeadless tool and Java scripts via subprocess calls in ghidra-analyze.sh. While this is the primary purpose of the skill, it involves local execution of tools and scripts on the host system.
  • PROMPT_INJECTION (LOW): Indirect prompt injection surface identified in the processing of untrusted binaries.
  • Ingestion points: Binary files are passed to ghidra-analyze.sh (e.g., via the BINARY argument).
  • Boundary markers: Absent. The skill does not use delimiters or boundary markers when presenting extracted data (strings, decompiled code) to the agent.
  • Capability inventory: Subprocess calls to analyzeHeadless and Java scripts, along with file system read/write operations for logs and results.
  • Sanitization: Absent. There is no sanitization or escaping of the binary's contents before the resulting text is provided to the agent context.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:31 PM