car-sales-data-engineering-analytics
Fail
Audited by Gen Agent Trust Hub on Jun 12, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the agent to clone a complete project repository from 'https://github.com/Abdumalik-ProDev/Car-Sales-Data-Engineering.git'. The source repository is not associated with the declared author 'Aradotso' and is not an established trusted vendor source.
- [REMOTE_CODE_EXECUTION]: The instructions command the agent to run installation and execution commands ('uv sync', 'uv run streamlit run src/ui.py', 'uv run python -m src.main') on the newly cloned, unverified codebase, leading to the execution of untrusted remote scripts.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through the ingestion of external data files. 1. Ingestion points: 'data/Car sales.csv' (loaded via CarSalesAnalysis). 2. Boundary markers: None present to distinguish data from instructions. 3. Capability inventory: Execution of subprocesses via 'uv run', file system write operations to 'outputs/'. 4. Sanitization: No validation or sanitization of the CSV content is performed before processing.
Recommendations
- AI detected serious security threats
Audit Metadata