defuddle

Pass

Audited by Gen Agent Trust Hub on Jun 14, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of the defuddle npm package via the command npm install -g defuddle.
  • [COMMAND_EXECUTION]: The skill instructs the agent to execute shell commands using the defuddle CLI to parse content from URLs and potentially write output to the file system.
  • [PROMPT_INJECTION]: The skill creates a surface for indirect prompt injection by ingesting and processing data from external, untrusted web pages.
  • Ingestion points: External content is retrieved via the defuddle parse <url> command described in SKILL.md.
  • Boundary markers: Absent; the instructions do not provide delimiters or directions for the agent to ignore instructions embedded in the fetched content.
  • Capability inventory: The skill uses subprocess execution to run the CLI tool and includes file-writing capabilities.
  • Sanitization: Absent; no sanitization or validation of the retrieved web data is specified before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 14, 2026, 06:40 AM
Security Audit — agent-trust-hub — defuddle