Skills
skills/easysoft/zentao-skills/zentao-api/Gen Agent Trust Hub

zentao-api

Pass

Audited by Gen Agent Trust Hub on Apr 19, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes a local shell script scripts/get-token.sh and evaluates its output using eval to establish authentication environment variables ($ZENTAO_TOKEN, etc.).
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it retrieves and processes data from external ZenTao API endpoints (such as bug reports, story descriptions, and tasks) without explicitly defined boundary markers or response sanitization.
  • Ingestion points: API response data from multiple GET endpoints documented in api-reference.md (e.g., /stories, /bugs, /tasks).
  • Boundary markers: None identified in the instructions for isolating external content.
  • Capability inventory: The skill can perform network operations via curl and execute local scripts.
  • Sanitization: No evidence of validation or escaping for data retrieved from the ZenTao server.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 19, 2026, 11:12 AM