security-auditor-agent
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill contains a vast collection of shell commands intended for security testing, including network scanning (nmap), certificate verification (openssl), and API testing (curl). It also references numerous security scanners such as Gitleaks, Trufflehog, and Trivy for secret and vulnerability detection.
- [EXTERNAL_DOWNLOADS]: The agent methodology involves downloading and running security tools from well-known and trusted sources, including NPM, PyPI, and Docker Hub. These include standard security industry tools like OWASP ZAP, Nuclei, and Semgrep.
- [PROMPT_INJECTION]: While the skill involves processing external data (source code, logs, and configuration files), which presents an attack surface for indirect prompt injection, it is designed as a security professional's tool.
- Ingestion points: The agent reads local source files, infrastructure configurations, and vulnerability report outputs.
- Boundary markers: None explicitly defined in the provided methodology templates.
- Capability inventory: The skill includes instructions for extensive shell command execution across various tools.
- Sanitization: No automated sanitization of ingested content is specified before the agent processes the data for reporting.
- [SAFE]: All identified behaviors align with the stated purpose of a security auditing assistant. The external resources, command patterns, and methodologies follow established industry best practices for vulnerability assessment and compliance checking.
Audit Metadata