Skills
skills/terrylica/cc-skills/email-triage/Gen Agent Trust Hub

email-triage

Pass

Audited by Gen Agent Trust Hub on Apr 4, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The setup process for the gmail-cli component involves running bun install, which downloads external packages from a registry. The specific dependencies are not listed in the provided files.
  • [COMMAND_EXECUTION]: The skill executes shell commands to build components (bun install && bun run build) and run the triage digest (bun run digest.ts).
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it processes untrusted data from emails.
  • Ingestion points: Fetches and processes recent emails via digest.ts.
  • Boundary markers: None identified in the provided files; instructions for handling email content are referenced in external files not included in this analysis.
  • Capability inventory: The skill uses Bash, Read, Grep, and Glob tools, which could be leveraged if malicious email content influences agent behavior.
  • Sanitization: No evidence of input sanitization or validation of the ingested email content was found in the provided files.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 4, 2026, 09:52 AM