sharecrm
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the Node.js runtime environment setup script from NodeSource and installs the sharecrm CLI package from the official npm registry.
- [REMOTE_CODE_EXECUTION]: Executes an environment configuration script for the Node.js runtime on Linux systems during the installation process.
- [COMMAND_EXECUTION]: Performs system-level operations to install required dependencies and the sharecrm package, utilizing sudo for global package management on Linux and macOS where necessary.
- [PROMPT_INJECTION]: Evaluates the indirect prompt injection surface associated with processing CRM data.
- Ingestion points: Data enters the agent context through the outputs of various sharecrm commands, such as data query and record retrieval tools mentioned in SKILL.md and references/products/data.md.
- Boundary markers: The skill includes strict operational guidelines (NEVER DO / MUST DO sections) and requires explicit user confirmation for high-impact actions, which serves to limit the risk of accidental execution of embedded instructions.
- Capability inventory: The skill possesses capabilities for data creation, modification, deletion, and file management through the sharecrm CLI tool.
- Sanitization: The skill relies on the validation and sanitization provided by the sharecrm CLI and its underlying API services.
Audit Metadata