Skills
skills/oimiragieo/agent-studio/configuration-management/Gen Agent Trust Hub

configuration-management

Pass

Audited by Gen Agent Trust Hub on Mar 3, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The SKILL.md file contains a 'Memory Protocol' section that instructs the agent to execute a shell command (cat .claude/context/memory/learnings.md) to read previously recorded context patterns.
  • [PROMPT_INJECTION]: The skill processes user-controlled svelte.config.js files and has permissions to modify the filesystem, which creates a vulnerability surface for indirect prompt injection.
  • Ingestion points: Configuration files matching the svelte.config.js glob are ingested via the Read tool.
  • Boundary markers: No delimiters or instructions are provided to distinguish between the file's content and the agent's instructions.
  • Capability inventory: The skill utilizes Read, Write, and Edit tools and includes instructions for shell-based file reading.
  • Sanitization: No input validation or sanitization is performed on the contents of the ingested configuration files.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 3, 2026, 02:04 PM