gifgrep
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
gifgrepbinary from a third-party GitHub repository (github.com/steipete/gifgrep) using Homebrew or the Go toolchain. - [PROMPT_INJECTION]: The skill processes untrusted metadata from external GIF providers (Tenor and Giphy), creating an attack surface for indirect prompt injection.
- Ingestion points: Metadata such as GIF titles and tags from external search results (Tenor and Giphy).
- Boundary markers: No explicit delimiters are used to separate external content from agent instructions.
- Capability inventory: The skill can execute the
gifgrepcommand and write files to the ~/Downloads directory. - Sanitization: There is no evidence of sanitization for the data retrieved from external APIs.
Audit Metadata