Skills
skills/volcengine/openviking/searching-context/Gen Agent Trust Hub

searching-context

Pass

Audited by Gen Agent Trust Hub on Feb 25, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes various commands using the ov CLI utility, including ov search, ov grep, ov glob, ov ls, ov tree, and ov read. These commands are used to interact with the local OpenViking context and configuration located at ~/.openviking/ovcli.conf.
  • [PROMPT_INJECTION]: The skill presents an attack surface for indirect prompt injection as it retrieves data from external resources and memories.
  • Ingestion points: Data enters the agent's context through search results and resource content retrieved via ov search, ov grep, and ov read.
  • Boundary markers: The documentation does not define specific delimiters or instructions to treat the retrieved content as untrusted data.
  • Capability inventory: The skill provides full content retrieval (ov read), directory traversal (ov ls, ov tree), and recursive search capabilities via the ov CLI.
  • Sanitization: There is no indication that the skill sanitizes or validates the data retrieved from OpenViking resources before passing it to the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 25, 2026, 06:19 AM