block-inventory
Pass
Audited by Gen Agent Trust Hub on May 22, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: Lists local project directories using standard shell commands to identify blocks already present in the workspace.
- [EXTERNAL_DOWNLOADS]: Fetches block examples and documentation from Adobe's official 'aem.live' domain to provide usage context for authors.
- [COMMAND_EXECUTION]: Executes local Node.js utility scripts located within the project's internal directory structure to query Adobe's block collection.
- [PROMPT_INJECTION]: Includes explicit instructions for the agent to treat fetched external content as data rather than instructions, mitigating potential indirect prompt injection from documentation sources.
Audit Metadata