Skills
skills/agoodway/goodskills/check/Gen Agent Trust Hub

check

Pass

Audited by Gen Agent Trust Hub on May 8, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes the just check command in the shell to perform project linting and quality tasks.\n- [EXTERNAL_DOWNLOADS]: Suggests the installation of additional skills from the vendor's repository (agoodway/GoodSkills) using the npx skills add command.\n- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) because it executes logic defined in a project's justfile which could be modified by a malicious actor.\n
  • Ingestion points: Project justfile found in the root directory.\n
  • Boundary markers: Absent; the skill does not verify the safety of the check recipe before execution.\n
  • Capability inventory: Shell command execution via the just utility.\n
  • Sanitization: None; the recipe content is passed directly to the system for execution.
Audit Metadata
Risk Level
SAFE
Analyzed
May 8, 2026, 11:52 AM
Security Audit — agent-trust-hub — check