Skills
skills/oimiragieo/agent-studio/expo-mobile-app-rule/Gen Agent Trust Hub

expo-mobile-app-rule

Pass

Audited by Gen Agent Trust Hub on Mar 3, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection by processing external code files.
  • Ingestion points: The skill is configured to operate on 'mobile/**/*.tsx' files.
  • Boundary markers: There are no defined delimiters or instructions to ignore instructions embedded within the analyzed code.
  • Capability inventory: The skill utilizes 'Read', 'Write', and 'Edit' tools, which could be misused if the agent follows malicious instructions found in code comments.
  • Sanitization: No sanitization or validation logic is present to filter content from the target files before processing.
  • [COMMAND_EXECUTION]: The 'Memory Protocol' in SKILL.md explicitly instructs the agent to execute shell commands ('cat') to interact with a local file ('.claude/context/memory/learnings.md'). While intended for persistence, this defines a pattern of local filesystem interaction via command execution.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 3, 2026, 02:04 PM