Skills
skills/ariestar/agent-runbook/runbook-skill/Gen Agent Trust Hub

runbook-skill

Pass

Audited by Gen Agent Trust Hub on May 16, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill provides instructions to download and install the runbook CLI tool from the author's GitHub repository (Ariestar/agent-runbook).
  • [REMOTE_CODE_EXECUTION]: The setup process uses cargo install --git, which downloads, builds, and executes source code from a remote repository on the local machine.
  • [COMMAND_EXECUTION]: The skill involves running shell commands, including runbook scan for environment discovery and potentially cargo install for initial setup.
  • [PROMPT_INJECTION]: The skill interprets output from the environment scan to derive an operating contract, which creates a surface for indirect prompt injection from repository metadata.
  • Ingestion points: Command output from runbook scan as described in SKILL.md.
  • Boundary markers: None identified to separate scanned data from agent instructions.
  • Capability inventory: File searching (rg), text replacement (sd), GitHub CLI (gh), and cloud/database CLI operations mentioned in SKILL.md.
  • Sanitization: No sanitization or validation of the scan results is specified before the agent uses them to form its execution plan.
Audit Metadata
Risk Level
SAFE
Analyzed
May 16, 2026, 10:32 PM