weather
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill is designed to retrieve weather data and does not contain any malicious patterns or behaviors.
- [EXTERNAL_DOWNLOADS]: Fetches weather data from wttr.in, which is a well-known and widely used public service for command-line weather information.
- [COMMAND_EXECUTION]: Employs the
curlcommand to perform HTTP GET requests to retrieve weather status. These operations are restricted to data fetching and are appropriate for the skill's functionality. - [PROMPT_INJECTION]: Evaluated for indirect prompt injection risks. 1. Ingestion points: Weather data is received from wttr.in via curl commands in SKILL.md. 2. Boundary markers: No specific delimiters are used to separate external weather data from agent instructions. 3. Capability inventory: Uses curl for network requests. 4. Sanitization: External weather data is not explicitly sanitized or filtered before being processed. Given the source is a well-known service, the risk is minimal.
Audit Metadata