adding-resource
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the 'ov' CLI tool to execute resource management commands, specifically 'ov add-resource', which is the primary intended function of the skill.
- [EXTERNAL_DOWNLOADS]: The skill facilitates downloading content from external URLs and the author's official GitHub repository (volcengine/OpenViking) to populate the resource database. These references are documented neutrally as they target the vendor's own infrastructure.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as it is designed to ingest and process untrusted data from URLs and local files. ● Ingestion points: Data enters the agent's context through the 'ov add-resource' command (SKILL.md). ● Boundary markers: No delimiters or specific 'ignore instructions' warnings are mentioned for the ingested content. ● Capability inventory: The skill is restricted to CLI interactions for resource management (SKILL.md). ● Sanitization: No sanitization or validation logic is specified for the external content before it is stored in the context database.
Audit Metadata