mise
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes the 'mise' CLI to perform environment management tasks. These commands are standard for the tool's intended purpose and do not exhibit malicious intent.
- [EXTERNAL_DOWNLOADS] (SAFE): The skill facilitates the download of runtimes and tools from official registries via 'mise'. These are considered trusted sources in the context of development environment setup.
- [Indirect Prompt Injection] (LOW): The skill exhibits an attack surface where untrusted user input is passed to the system shell. 1. Ingestion points: File 'SKILL.md' uses placeholders like '' and '' in bash commands. 2. Boundary markers: Absent; no explicit delimiters or instructions are used to separate user input. 3. Capability inventory: 'mise' has the capability to download binaries, execute installers, and modify configuration files. 4. Sanitization: Absent; the skill relies on the 'mise' binary to validate input strings.
Audit Metadata