get-api-docs
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface. The skill fetches and processes external documentation through the 'chub' CLI, which presents a surface where instructions embedded in external documentation could potentially influence agent behavior. Ingestion points: External documentation retrieved via 'chub get'. Boundary markers: No explicit delimiters are used to separate documentation content from system instructions. Capability inventory: The agent uses 'chub' for documentation management; no high-risk capabilities like arbitrary shell execution are exposed. Sanitization: No sanitization is performed on the retrieved documentation.
- [COMMAND_EXECUTION]: CLI Tool Usage. The skill utilizes the 'chub' CLI tool for searching, fetching, and annotating documentation, which is consistent with its stated purpose.
- [EXTERNAL_DOWNLOADS]: Documentation Retrieval. The skill downloads external documentation data via the 'chub' tool to provide accurate API context.
Audit Metadata