Skills
skills/sickn33/antigravity-awesome-skills/firmware-analyst/Gen Agent Trust Hub

firmware-analyst

Warn

Audited by Gen Agent Trust Hub on Apr 14, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTIONREMOTE_CODE_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilize sudo chroot to emulate and interact with firmware filesystems, which involves elevated system privileges.
  • [EXTERNAL_DOWNLOADS]: Includes template commands for fetching firmware updates from external vendors using the unencrypted HTTP protocol (e.g., wget http://vendor.com/firmware/update.bin).
  • [DATA_EXFILTRATION]: Provides instructions and search patterns to locate sensitive information, including hardcoded credentials, passwords, and private RSA keys, within analyzed firmware images.
  • [REMOTE_CODE_EXECUTION]: The workflow involves downloading firmware from external sources and subsequently executing its contents via emulation or chroot, which constitutes a remote code execution risk if the source is malicious.
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection when processing untrusted firmware data.
  • Ingestion points: Data from tools like binwalk, strings, grep, and file is incorporated into the agent's context (SKILL.md).
  • Boundary markers: No explicit delimiters or ignore-instructions are used for external tool output.
  • Capability inventory: The skill can perform shell execution, filesystem operations, and use sudo (SKILL.md).
  • Sanitization: There is no validation or sanitization of tool outputs before processing.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 14, 2026, 02:56 AM