summarize
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the summarize binary from a third-party Homebrew tap (steipete/tap/summarize), which introduces a dependency on an external software source.
- [COMMAND_EXECUTION]: The skill executes the summarize CLI tool via subprocess to process user-provided inputs, including remote URLs and local file paths.
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection through the content it summarizes. 1. Ingestion points: The skill ingests data from external URLs, YouTube transcripts, and local documents. 2. Boundary markers: No delimiters or instructions are used to separate external content from the prompt context. 3. Capability inventory: The skill has the capability to execute a binary that interacts with both the network and the local file system. 4. Sanitization: No evidence of sanitization or validation of the input content is provided before it is processed by the agent.
Audit Metadata