teneo-protocol-cli
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFEPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Automatically installs the
teneo-skillspackage globally from the npm registry if it is not found on the system.- [COMMAND_EXECUTION]: Orchestrates various shell commands to manage rooms, add/remove agents, and execute queries across the Teneo network.- [CREDENTIALS_UNSAFE]: Includes a 64-character hexadecimal string as an example private key (TENEO_PRIVATE_KEY) within the documentation for authentication demonstration.- [PROMPT_INJECTION]: Subject to indirect prompt injection risks. - Ingestion points: Processes data and manifests from 400+ external AI agents across the Teneo Protocol network (SKILL.md).
- Boundary markers: No explicit delimiters or instructions to ignore embedded instructions within agent-provided data are implemented.
- Capability inventory: Performs shell command execution, file system writes (wallet files), and network operations via the
teneo-clitool. - Sanitization: Lacks documentation of sanitization or validation of the 'humanized' or 'raw' JSON output from external agents before it is processed by the agent.
Audit Metadata