wecomcli-smartsheet
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes the
wecom-clibinary to perform spreadsheet operations, using JSON-formatted parameters. This is the intended and primary operation mode for the skill.\n- [EXTERNAL_DOWNLOADS]: The skill metadata identifieswecom-clias a required external binary dependency for all spreadsheet management tasks.\n- [PROMPT_INJECTION]: The skill exposes a surface for indirect prompt injection by reading record data from external spreadsheets viasmartsheet_get_records.\n - Ingestion points: Data retrieved from smartsheets using
smartsheet_get_records(SKILL.md).\n - Boundary markers: The instructions do not define delimiters or warnings to isolate instructions found in spreadsheet data.\n
- Capability inventory: Shell execution of
wecom-cliand file system access throughimage_pathandfile_pathparameters (SKILL.md).\n - Sanitization: The skill does not specify procedures for validating or sanitizing data ingested from the spreadsheets.
Audit Metadata