cc-skill-strategic-compact
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The script 'suggest-compact.sh' utilizes bash commands to increment a counter stored in a temporary file in '/tmp'. This is a benign local operation intended for session management.
- [PROMPT_INJECTION]: The script provides workflow suggestions via the 'stderr' stream, creating an indirect prompt injection surface where the agent processes the feedback.
- Ingestion points: The script outputs messages to 'stderr' which are typically monitored and ingested by the agent.
- Boundary markers: No specific boundary markers or 'ignore' instructions are present in the shell output.
- Capability inventory: The skill allows for local shell script execution and file modification within the '/tmp' directory.
- Sanitization: The reminders are hardcoded strings and do not incorporate external or untrusted data, minimizing the risk of exploitation.
Audit Metadata