stripe-audit
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill executes local shell scripts (
detect-environment.shandstripe_audit.sh) to perform environment checks and configuration audits. These commands are scoped to the skill's internal directory (~/.claude/skills/stripe/scripts/) and serve the intended primary purpose.\n- [PROMPT_INJECTION] (LOW): The skill possesses a surface for Indirect Prompt Injection (Category 8) as it processes untrusted data from existing integrations. \n - Ingestion points: Analyzes 'existing Stripe integration' code, configuration files, and environment settings.\n
- Boundary markers: Absent; the skill does not define specific delimiters or instructions to prevent the agent from obeying instructions embedded within the code being audited.\n
- Capability inventory: Includes shell script execution, interaction with the Stripe CLI (
stripe listen), and the ability to spawn astripe-auditorsubagent.\n - Sanitization: Absent; no sanitization or escaping mechanisms are described for the external code ingested during the audit process.
Audit Metadata