hammerspoon
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [External Downloads] (LOW): The skill documents the installation of plugins (Spoons) from external sources, including GitHub and the official Hammerspoon repository. Evidence: Reference to https://github.com/peterklijn/hammerspoon-shiftit and SpoonInstall configuration in SKILL.md.\n- [Command Execution] (LOW): Core functionality relies on the
hscommand-line tool to execute arbitrary Lua code within the Hammerspoon environment. Evidence: Documentation ofhs -cusage for reloading and executing scripting commands.\n- [Prompt Injection] (LOW): The skill demonstrates reading external data such as window titles which could be used as an indirect injection vector.\n - Ingestion points: hs.window.focusedWindow():title() in SKILL.md.\n
- Boundary markers: None present.\n
- Capability inventory: Lua execution via hs -c, window management, and notifications.\n
- Sanitization: No input validation or escaping logic is shown for external data processing.
Audit Metadata