Skills
skills/synkraai/aios-core/aiox-qa/Gen Agent Trust Hub

aiox-qa

Warn

Audited by Gen Agent Trust Hub on Mar 22, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill triggers the execution of a local Node.js script (".aiox-core/development/scripts/generate-greeting.js") as part of its activation protocol.
  • [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection when processing external content.
  • Ingestion points: Data enters via the "{story}" and "{scope}" parameters in the "SKILL.md" command definitions.
  • Boundary markers: None identified; untrusted data is processed without explicit delimiters or instructions to ignore embedded commands.
  • Capability inventory: The skill can execute local scripts via Node.js and write files (e.g., "qa_report.md", "QA_FIX_REQUEST.md") to the filesystem.
  • Sanitization: No validation or sanitization of the interpolated input data is described.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 22, 2026, 03:38 PM