skills/florianbruniaux/claude-code-ultimate-guide/source-command-audit-whitepapers/Gen Agent Trust Hub
source-command-audit-whitepapers
Pass
Audited by Gen Agent Trust Hub on May 26, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes
git logcommands to analyze the commit history of documentation files. This is used to calculate content staleness by comparing the last update date of a document with the repository's commit logs for the main guide. This activity is restricted to local filesystem operations and is necessary for the skill's primary function. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) because it extracts the
datefield from the YAML frontmatter of audited.qmdfiles and interpolates it into a shell command (git log --since="{date}"). Although the skill specifies that the agent should validate the date format (e.g.,YYYY-MM-DD), this pattern represents a vulnerability surface if the files being audited contain maliciously crafted metadata. - Ingestion points:
VERSIONfile at project root and.qmdfiles inwhitepapers/andrecap-cards/directories (SKILL.md). - Boundary markers: No specific delimiters or safety instructions are used when interpolating the metadata into the shell command.
- Capability inventory: Shell execution of
git logvia the agent's command tool. - Sanitization: The skill instructs the agent to parse the date and verify it is not in the future, providing a basic layer of validation before command execution.
Audit Metadata