entr
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill documents the use of the
entrutility to execute arbitrary commands, such asmake,npm test, ornode. This behavior is the primary intended purpose of the tool for automating development tasks based on file system events. - [INDIRECT_PROMPT_INJECTION]: The utility accepts file listings from external commands (e.g.,
find,ls,git ls-files) as input. This creates an ingestion point for potentially untrusted data (like filenames). However, this is an inherent feature of the tool, and the skill includes no patterns that exploit this surface or encourage unsafe processing of that data.
Audit Metadata