fastapi-backend-template
Warn
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
- External Downloads (MEDIUM): The skill clones a repository from an untrusted GitHub account ('Aeternalis-Ingenium'). While GitHub is a trusted platform, this specific organization is not on the whitelist of trusted sources.
- Remote Code Execution (MEDIUM): The skill instructs the agent to install dependencies from a downloaded 'requirements.txt' and execute the application using 'uvicorn'. Since the source is untrusted, this poses a risk of executing malicious code if the repository content is modified by an attacker.
- Indirect Prompt Injection (LOW): As the skill ingests a third-party codebase, it represents an attack surface where malicious instructions could be embedded in the repository's files. [Ingestion points: git clone Aeternalis-Ingenium/FastAPI-Backend-Template] [Boundary markers: None] [Capability inventory: pip install, uvicorn execution] [Sanitization: None]
Audit Metadata