Skills
skills/peduarte/dieworkwear-skill/dieworkwear/Gen Agent Trust Hub

dieworkwear

Pass

Audited by Gen Agent Trust Hub on Mar 9, 2026

Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it processes untrusted data from an external source.
  • Ingestion points: Content is fetched from https://dieworkwear.com and stored in references/articles.txt via the scripts/sync.sh script.
  • Boundary markers: No specific delimiters or instructions are provided to the agent to distinguish between its own instructions and the content retrieved from the external site.
  • Capability inventory: The skill utilizes shell commands including grep, wc, and the sitefetch tool.
  • Sanitization: There is no evidence of sanitization, filtering, or validation performed on the downloaded content before it is synthesized by the agent.
  • [EXTERNAL_DOWNLOADS]: The skill fetches menswear articles and guides from the official dieworkwear.com website to populate its knowledge base.
  • [COMMAND_EXECUTION]: Executes shell commands such as grep to search the local knowledge base and sitefetch to synchronize content from the source website.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 9, 2026, 01:39 AM