Skills
skills/wotaso/prodinfos-skills/prodinfos-cli/Gen Agent Trust Hub

prodinfos-cli

Pass

Audited by Gen Agent Trust Hub on Mar 9, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the @prodinfos/cli tool using npm (npm i -g @prodinfos/cli). This is an expected dependency for the skill's functionality and aligns with the vendor's namespace.
  • [COMMAND_EXECUTION]: The skill instructions involve executing various subcommands of the prodinfos CLI, such as funnel, breakdown, timeseries, and events export. These are used for the primary purpose of analytics data retrieval.
  • [PROMPT_INJECTION]: As an indirect surface, the skill processes output from the CLI which originates from external analytics events. The instructions emphasize using structured output (--format json) and scoping queries by project and time to maintain boundaries.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 9, 2026, 04:45 PM