Skills
skills/teachingai/full-stack-skills/ascii-cli-logo-banner-python/Gen Agent Trust Hub

ascii-cli-logo-banner-python

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • COMMAND_EXECUTION (LOW): The skill executes scripts/generate_banner.py using python3 and passes user-provided strings (brand, slogan, hint) as arguments. This setup presents a surface for command injection if the script processes these arguments using unsafe methods like shell=True in subprocess calls.
  • PROMPT_INJECTION (LOW): The skill processes untrusted input to generate text output, creating a surface for indirect prompt injection. Evidence Chain: 1. Ingestion points: brand, slogan, and hint inputs. 2. Boundary markers: None specified. 3. Capability inventory: Local Python script execution. 4. Sanitization: No sanitization or escaping of input data is documented.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:31 PM