hunt-host-header
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill provides various curl and openssl command templates to assist in security testing. These commands are standard for auditing purposes and use placeholders for target hosts.
- [PROMPT_INJECTION]: The skill exposes an indirect prompt injection surface by instructing the agent to process responses from external targets. 1. Ingestion points: curl output from external targets. 2. Boundary markers: None. 3. Capability inventory: curl, grep, and openssl subprocess calls. 4. Sanitization: None. This is categorized as safe given the skill's specialized use-case for vulnerability research.
- [SAFE]: No evidence of malicious behavior, secret exfiltration, or obfuscated payloads was found.
Audit Metadata