skills/mukul975/anthropic-cybersecurity-skills/analyzing-supply-chain-malware-artifacts/Gen Agent Trust Hub
analyzing-supply-chain-malware-artifacts
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The
scripts/agent.pyscript performs metadata lookups on the official npm (registry.npmjs.org) and PyPI (pypi.org) registries. These are well-known services and the queries are used neutrally for integrity and provenance verification. - [PROMPT_INJECTION]: The skill handles untrusted data from package configuration files, presenting a surface for indirect prompt injection.
- Ingestion points: Input files like
package.jsonandsetup.pyare read and processed byscripts/agent.py. - Boundary markers: The script outputs its findings directly without using specific delimiters or safety instructions to separate analyzed data from the agent's context.
- Capability inventory: The environment has access to standard filesystem operations and the Python
requestslibrary. - Sanitization: The skill performs static analysis using regular expressions and JSON parsing to flag known suspicious patterns (e.g.,
os.system,exec) rather than executing the untrusted content.
Audit Metadata