tool-design
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The skill advocates for an 'Architectural Reduction' approach where agents are given direct access to command-line tools and Unix utilities (e.g., ls, grep, find). This pattern significantly expands the agent's capability to interact with the host system, which could be exploited to execute unauthorized commands if the agent's instructions are subverted.
- [DATA_EXFILTRATION]: By recommending direct file system access as a core design principle for agents, the guide promotes an architecture that allows for broad reading of system data and sensitive files. This lack of granular tool constraints increases the risk of data exposure through the agent interface.
Audit Metadata