skill-vetting
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Downloads skill packages from the vendor-associated domain
auth.clawdhub.comfor security inspection and analysis.\n- [COMMAND_EXECUTION]: Executes a local Python-based security scanner and standard utilities likecurlandunzipto process and inspect external code packages.\n- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it ingests and analyzes untrusted third-party code. \n - Ingestion points: The
scan.pyscript reads the raw text content of files within the directory being vetted. \n - Boundary markers: Scanned content is reported via file and line references but is not isolated with specialized security delimiters in the output. \n
- Capability inventory: The skill has command-line capabilities including
curl,unzip, andgrepfor file management and searching. \n - Sanitization: Content extracted from the scanned files is not sanitized or filtered before being displayed to the agent.
Audit Metadata