eliteforge-qingtui-cli
Pass
Audited by Gen Agent Trust Hub on May 20, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the eliteforge-qingtui-cli package from the PyPI registry at runtime during initialization.
- [COMMAND_EXECUTION]: Executes shell commands via pipx and qingtui to perform package management and application tasks, including installation and upgrades.
- [PROMPT_INJECTION]: Susceptible to indirect prompt injection via data processed from the QingTui API. 1. Ingestion points: User list and resolution data from qingtui list-users and qingtui resolve-users referenced in SKILL.md. 2. Boundary markers: None defined to isolate external API data from agent instructions. 3. Capability inventory: Command execution and package management capabilities in SKILL.md. 4. Sanitization: Uses jq for JSON parsing but lacks content sanitization for data interpolated into prompts.
Audit Metadata