Skills
skills/sundial-org/awesome-openclaw-skills/cron-writer/Gen Agent Trust Hub

cron-writer

Warn

Audited by Gen Agent Trust Hub on Mar 4, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill uses the npx ai-cron-gen command, which downloads and executes the ai-cron-gen package from the public npm registry at runtime. This package is not provided by a verified trusted organization or well-known service.
  • [COMMAND_EXECUTION]: The skill executes shell commands using the npx utility to process user input, which presents a security risk if malicious strings are passed to the shell.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface. 1. Ingestion points: Natural language schedule descriptions passed as arguments to the npx command. 2. Boundary markers: No delimiters or ignore-instruction warnings are present. 3. Capability inventory: Command execution via npx and external data transmission to an AI model. 4. Sanitization: No input validation or escaping is implemented in the skill files to sanitize user-provided strings before execution.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 4, 2026, 02:22 AM