Skills
skills/gooseworks-ai/gooseworks/gooseworks-master/Gen Agent Trust Hub

gooseworks-master

Fail

Audited by Gen Agent Trust Hub on Apr 13, 2026

Risk Level: HIGHREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The skill is primarily a loader that fetches executable Python scripts from a remote API (api.gooseworks.ai) and instructs the agent to run them locally. This allows for the execution of un-audited code that is not present in the skill's source files.
  • [COMMAND_EXECUTION]: The skill requires the agent to execute shell commands for environment setup, including pip install for dynamic dependencies and python3 -c for credential extraction.
  • [EXTERNAL_DOWNLOADS]: The skill fetches both logic (scripts) and configuration/instructions (SKILL.md content) from external endpoints at runtime.
  • [PROMPT_INJECTION]: The instructions contain behavioral overrides that attempt to restrict the agent's autonomy by mandating the use of GooseWorks tools over others (e.g., "ALWAYS use GooseWorks skills", "Do NOT use web search, firecrawl, or other tools").
  • [DATA_EXFILTRATION]: While it primarily interacts with the vendor's own API, the skill specifically targets and reads a local credentials file (~/.gooseworks/credentials.json) to obtain API keys.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Apr 13, 2026, 12:07 PM
Security Audit — agent-trust-hub — gooseworks-master