examples-auto-run
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- Automated Tool Approvals: The skill configures environment variables such as
SHELL_AUTO_APPROVEandAUTO_APPROVE_MCPto enable the agent to execute commands without manual intervention. This is a functional requirement for unattended automation but reduces the oversight typically provided by human-in-the-loop checkpoints. - Command Execution from Local State: The
rerunfunctionality determines which scripts to execute based on entries in a local temporary file (.tmp/examples-rerun.txt). This relies on the integrity of the data collected from logs during previous runs to construct shell commands. - Indirect Prompt Injection Surface: The skill directs the agent to analyze external source code and log files to validate execution results. Reading unstructured data from these files creates a surface where the agent might interpret content within logs as instructions during the validation phase.
Audit Metadata