Skills
skills/heldinhow/awesome-opencode-dev-skills/internal-comms/Gen Agent Trust Hub

internal-comms

Pass

Audited by Gen Agent Trust Hub on Jun 15, 2026

Risk Level: SAFENO_CODECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [NO_CODE]: The skill consists entirely of markdown documentation and metadata configuration; no executable scripts, binaries, or code files are included.
  • [COMMAND_EXECUTION]: The _meta.json file requests the exec tool, providing shell command execution capability. This is unnecessary for a skill dedicated to writing text and violates the principle of least privilege.
  • [PROMPT_INJECTION]: The instructions direct the agent to load external templates and guidelines, creating an indirect prompt injection surface.
  • Ingestion points: Step-by-Step Process and Preparation Checklist in SKILL.md.
  • Boundary markers: None specified to delimit external content.
  • Capability inventory: The skill requests the exec tool in _meta.json.
  • Sanitization: No validation or sanitization of external templates is described.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 15, 2026, 03:23 AM
Security Audit — agent-trust-hub — internal-comms