moonshine-component
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION] (LOW): Indirect Prompt Injection Surface detected. * Ingestion points: Untrusted user data enters the context via the $ARGUMENTS variable. * Boundary markers: Absent. The skill does not use delimiters or explicit instructions to the agent to ignore instructions embedded within the user input. * Capability inventory: The skill is granted powerful capabilities including Bash, Write, Edit, and Read tools. * Sanitization: There is no logic provided to sanitize or validate the content of the user request before it is used by the agent to perform operations.
Audit Metadata