Skills
skills/nansen-ai/nansen-cli/nansen-web-searcher/Gen Agent Trust Hub

nansen-web-searcher

Pass

Audited by Gen Agent Trust Hub on Mar 17, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: The skill processes untrusted data from the web via search queries, which introduces a surface for indirect prompt injection attacks.
  • Ingestion points: Web search results retrieved by the nansen web search command (SKILL.md).
  • Boundary markers: Absent. The skill does not define delimiters to separate untrusted search results from agent instructions.
  • Capability inventory: The skill has permission to execute nansen CLI commands in Bash (SKILL.md).
  • Sanitization: No sanitization of search results (titles, snippets, or dates) is performed.
  • [COMMAND_EXECUTION]: The skill is configured to execute the nansen CLI tool. This execution is limited to the specific tool suite provided by the vendor.
  • [EXTERNAL_DOWNLOADS]: The skill installs the nansen-cli Node package. This resource is identified as a vendor-owned package and is necessary for the skill's core functionality.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 17, 2026, 06:45 AM