cli-anything-lldb
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides capabilities to launch and attach to local binaries via the LLDB debugger.
- Evidence: Found
process launchandprocess attachcommands in SKILL.md which utilize the LLDB API to manage process execution. - [COMMAND_EXECUTION]: The skill enables the evaluation of dynamic expressions within a running process context.
- Evidence: Found the
exprcommand in SKILL.md intended for evaluating expressions in the current frame. - [EXTERNAL_DOWNLOADS]: The skill installs a vendor-owned package from a public registry.
- Evidence: The
installfield in SKILL.md specifiespip install cli-anything-lldb. - [PROMPT_INJECTION]: The skill possesses an ingestion surface for indirect prompt injection through process introspection.
- Ingestion points:
frame locals,thread backtrace, andmemory readcommands in SKILL.md. - Boundary markers: None identified in the provided instructions.
- Capability inventory: The skill can launch processes and evaluate expressions (
process launch,expr). - Sanitization: No explicit sanitization or filtering of debugged process data is mentioned.
Audit Metadata