learn
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill contains an indirect prompt injection surface by using user-provided concept names in shell commands and file paths. Ingestion points: User input for concept name in SKILL.md. Boundary markers: None. Capability inventory: Uses shell commands (mkdir, date, New-Item, Get-Date) and file system writes as specified in SKILL.md. Sanitization: No explicit sanitization or validation of the user-provided concept name is instructed before it is used in path construction or shell commands.
- [COMMAND_EXECUTION]: The skill directs the agent to execute standard shell utilities (mkdir, date, New-Item, Get-Date) to prepare the storage environment and generate timestamps.
Audit Metadata