eliteforge-qingtui-cli

Pass

Audited by Gen Agent Trust Hub on May 20, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches the eliteforge-qingtui-cli package from the PyPI registry at runtime during initialization.
  • [COMMAND_EXECUTION]: Executes shell commands via pipx and qingtui to perform package management and application tasks, including installation and upgrades.
  • [PROMPT_INJECTION]: Susceptible to indirect prompt injection via data processed from the QingTui API. 1. Ingestion points: User list and resolution data from qingtui list-users and qingtui resolve-users referenced in SKILL.md. 2. Boundary markers: None defined to isolate external API data from agent instructions. 3. Capability inventory: Command execution and package management capabilities in SKILL.md. 4. Sanitization: Uses jq for JSON parsing but lacks content sanitization for data interpolated into prompts.
Audit Metadata
Risk Level
SAFE
Analyzed
May 20, 2026, 02:58 AM
Security Audit — agent-trust-hub — eliteforge-qingtui-cli