notebook
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill facilitates the use of the 'exec' tool to run 'deeptutor' CLI commands for notebook management. This is the primary intended function of the skill and involves standard operations such as listing, creating, and deleting records.- [PROMPT_INJECTION]: The skill includes functionality to import external Markdown files, which serves as a surface for indirect prompt injection.\n
- Ingestion points: Markdown files are read into the system via 'add-md' and 'replace-md' commands (e.g., in SKILL.md).\n
- Boundary markers: No specific boundary markers or warnings are defined in the instructions to help the agent distinguish between data and potential instructions within the imported files.\n
- Capability inventory: The skill has the capability to execute shell commands and modify notebook storage through the 'deeptutor' binary.\n
- Sanitization: The skill instructions do not specify any validation or sanitization procedures for the content of the Markdown files being processed.
Audit Metadata