Skills
skills/phrazzld/claude-config/finances-snapshot/Gen Agent Trust Hub

finances-snapshot

Warn

Audited by Gen Agent Trust Hub on Feb 27, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes local Python scripts fetch_prices.py and snapshot.py using the uv runtime to automate financial updates and price fetching.
  • [DATA_EXFILTRATION]: Accesses sensitive personal financial data located at ~/Documents/finances/, including balance sheets, net worth snapshots, and transaction records.
  • [PROMPT_INJECTION]: Ingests untrusted data from user-provided CSV exports (from Copilot Money) stored in ~/Documents/finances/. This creates an indirect prompt injection surface where the snapshot.py script parses external data and performs command execution. The skill logic does not define explicit boundary markers or sanitization for these ingested files.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 27, 2026, 02:26 PM