Skills
skills/yonatangross/skillforge-claude-plugin/upgrade-assessment/Gen Agent Trust Hub

upgrade-assessment

Pass

Audited by Gen Agent Trust Hub on Mar 26, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses bash commands to detect the environment and scan the codebase for specific patterns. These commands are executed locally to inspect files like CLAUDE.md, hooks.json, and source code directories. Evidence: rules/detection-checks.md and rules/codebase-scan-patterns.md.- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection via the research workflow in Phase 2. It fetches external documentation and changelogs from the web using WebFetch. If an attacker were to poison these documentation sources with malicious instructions, the agent might attempt to follow them.\n
  • Ingestion points: External content fetched via WebFetch in Phase 2 (SKILL.md).\n
  • Boundary markers: None. The skill does not instruct the agent to ignore instructions within the fetched content.\n
  • Capability inventory: Bash, Task, WebFetch, WebSearch, Read tools are allowed (SKILL.md).\n
  • Sanitization: No sanitization or validation is performed on the retrieved web content.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 26, 2026, 10:46 AM