equipment-browser
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Command Execution] (SAFE): The skill utilizes the Bash tool to compile and run a local utility using
go buildand direct execution of the resulting binary. These operations are restricted to the local filesystem and are necessary for the skill's stated purpose of providing an equipment database. - [Indirect Prompt Injection] (SAFE): The skill defines several commands that accept user input, such as item IDs, search terms, and character classes. Ingestion points: CLI arguments for
show,search, andstartingcommands. Boundary markers: Not explicitly defined in documentation. Capability inventory: Local binary execution via Bash. Sanitization: Not specified in the skill documentation. The risk is evaluated as SAFE because the utility is focused on querying a local static dataset for RPG equipment.
Audit Metadata