larc-runtime
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill relies on the execution of local command-line binaries to manage tasks and report progress.
- It executes
bin/larcfor task ingress, context retrieval, and state updates (e.g.,bin/larc ingress openclaw,bin/larc ingress done). - It executes
addness-clito synchronize coding tasks with goal management (e.g.,addness-cli work start,addness-cli progress). - [DATA_EXFILTRATION]: The skill transmits operational data to external platforms.
- It sends task statuses and notes to the Lark/Feishu environment via the
bin/larcutility and theopenclaw-larkplugin. - It updates progress and PR URLs in the Addness goal tracking system.
- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection due to the processing of external data.
- Ingestion points: The commands
bin/larc ingress contextandbin/larc ingress handoffingest data directly from the external LARC/Lark task queue into the agent's context (SKILL.md). - Boundary markers: There are no explicit delimiters or instructions provided to the agent to treat the ingested task data as untrusted or to ignore embedded instructions.
- Capability inventory: The agent has access to shell execution via
bin/larcandaddness-cli, and network interaction through theopenclaw-larkplugin. - Sanitization: No sanitization or validation logic is specified for the data retrieved from the task queue.
Audit Metadata