view-note
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the 'dino' CLI tool via Bash to retrieve note information. This is a standard vendor-specific command used for the skill's primary function.
- [PROMPT_INJECTION]: The skill processes external note content, creating an indirect prompt injection surface. While no malicious instructions were found, any note content displayed to the agent could potentially influence its behavior.
- Ingestion points: Data retrieved from 'dino note detail' in SKILL.md.
- Boundary markers: None identified in the presentation instructions.
- Capability inventory: Access to Bash for command execution.
- Sanitization: None; content is presented as Markdown.
Audit Metadata