layerzero-teneo
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill performs a local file check and executes a binary located at
~/teneo-skill/teneoto determine its version and availability. - [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface by ingesting data from the Teneo CLI tool. Ingestion points: Output from CLI commands such as
list-agentsis piped into the agent's context. Boundary markers: None are defined to isolate untrusted tool output. Capability inventory: The skill executes shell commands via a local binary. Sanitization: There is no evidence of output validation or escaping. - [SAFE]: All external URLs and project resources (SDKs, CLI source) are hosted on the author's official GitHub repositories (TeneoProtocolAI), which is consistent with legitimate vendor infrastructure.
Audit Metadata