worker-benchmarks
Pass
Audited by Gen Agent Trust Hub on Jun 14, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill facilitates the execution of performance benchmarks through the
npx agentic-flow workers benchmarkCLI command. - [EXTERNAL_DOWNLOADS]: Execution of
npxcommands involves downloading theagentic-flowpackage from the NPM registry at runtime. As this package belongs to the skill's author, it is a vendor-owned resource. - [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection by processing external data as part of its benchmarking flow.
- Ingestion points: The skill reads performance thresholds from
.claude/settings.jsonand evaluates various worker triggers (keywords) during thetrigger-detectionbenchmark. - Boundary markers: No explicit markers or instructions are defined to distinguish between data and instructions when processing settings or triggers.
- Capability inventory: The skill has the capability to execute shell commands via
npxand read/write local configuration files. - Sanitization: There is no evidence of validation or sanitization for the inputs retrieved from the settings file or the worker triggers before they are processed by the system.
Audit Metadata