cli-anything-unrealinsights

Pass

Audited by Gen Agent Trust Hub on May 15, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill facilitates the execution of the cli-anything-unrealinsights command-line utility to automate Unreal Engine trace captures and CSV data exports. It includes capabilities to invoke local build scripts (Build.bat) and manage process lifecycles on Windows systems.
  • [PROMPT_INJECTION]: The skill includes a surface for indirect prompt injection as it processes project-specific data and filesystem paths provided by the user.
  • Ingestion points: Engine roots, project paths, and trace output paths provided as command arguments in SKILL.md.
  • Boundary markers: Absent; arguments are passed directly to the CLI tool.
  • Capability inventory: Subprocess execution (via the CLI tool and batch scripts) and file system writes (trace and CSV generation) documented in SKILL.md.
  • Sanitization: Not explicitly defined in the skill instructions, as it assumes valid local paths are provided for developer workflows.
Audit Metadata
Risk Level
SAFE
Analyzed
May 15, 2026, 09:34 AM
Security Audit — agent-trust-hub — cli-anything-unrealinsights