bulk-operations
Pass
Audited by Gen Agent Trust Hub on Jun 29, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes a provided shell script
resources/pagination-loop.shand thehubspotCLI tool. The shell script is designed with safe practices, using shell array expansion and quoted variables to handle arguments correctly without shell injection vulnerabilities. - [INDIRECT_PROMPT_INJECTION]:
- Ingestion points: Untrusted data enters the agent context via the output of
hubspot objects listorsearchand the pagination loop script, which output JSONL data from the HubSpot CRM. - Boundary markers: Records are structured as JSONL, providing clear boundaries for individual data objects.
- Capability inventory: The skill possesses the capability to modify CRM data via
objects update,delete, andupsertcommands. - Sanitization: Data is transformed using
jqfor reshaping into specific action payloads. Although there is no explicit instruction-stripping, the dry-run mechanism and required confirmation for larger batches mitigate the risk of accidental execution of embedded instructions.
Audit Metadata