goplaces
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill directs the installation of the 'goplaces' CLI tool from a third-party Homebrew tap (steipete/tap/goplaces).
- [COMMAND_EXECUTION]: The skill uses shell execution to run the 'goplaces' binary with various flags for place searching and detail retrieval.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it retrieves and processes untrusted data from the Google Places API, such as place descriptions and user reviews.
- Ingestion points: API response content from 'goplaces search', 'details', and 'resolve' commands.
- Boundary markers: Absent; no instructions are provided to the agent to treat API output as untrusted or to ignore embedded instructions.
- Capability inventory: Shell command execution via the 'goplaces' CLI.
- Sanitization: None; the skill does not define any filtering or validation for the text returned by the API.
Audit Metadata