registry-browser
Pass
Audited by Gen Agent Trust Hub on May 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- External Content Processing: The skill's primary function involves fetching and displaying content from external GitHub repositories. This introduces a surface for indirect prompt injection, where instructions embedded in external files could potentially influence agent behavior during the preview phase.
- Network Communication: The skill performs network operations to fetch directory listings and files from external sources. While this is expected behavior for a browser, it involves communication with third-party domains.
- Local Configuration Management: The skill can update its list of watched registries by writing to a local configuration file. This allows for persistent changes to the skill's operational scope based on external inputs.
Audit Metadata