Skills
skills/tool-belt/skills/web-search/Gen Agent Trust Hub

web-search

Pass

Audited by Gen Agent Trust Hub on Apr 9, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill facilitates web search and content extraction using the infsh CLI tool and associated applications (Tavily and Exa), which are the intended services of the vendor.
  • [COMMAND_EXECUTION]: The skill demonstrates the use of the infsh command to interact with AI models and search engines. This is restricted by the allowed-tools configuration in the metadata.
  • [PROMPT_INJECTION]: The skill facilitates the ingestion of untrusted web content through extraction tools, creating a surface for indirect prompt injection if the output is passed to an LLM without proper sanitization.
  • Ingestion points: tavily/extract, exa/extract (defined in SKILL.md)
  • Boundary markers: None present in the usage examples
  • Capability inventory: infsh app run (command execution via Bash)
  • Sanitization: No explicit sanitization or filtering of web content is mentioned.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 9, 2026, 08:04 AM