texforge
Fail
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: HIGHREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The installation instructions include piping remote scripts from the author's GitHub repository directly into shell interpreters (curl piped to sh and irm piped to iex for Windows).
- [EXTERNAL_DOWNLOADS]: The skill documents that the texforge tool automatically downloads and installs the tectonic binary to a hidden directory (~/.texforge/bin/) upon first execution of the build command. It also downloads LaTeX templates from a remote registry via the 'texforge template add' command.
- [COMMAND_EXECUTION]: The skill functions by executing various CLI commands through the agent, including project initialization, compilation, and formatting, which involve subprocess operations and local filesystem modifications.
- [DATA_INGESTION_SURFACE]: The skill possesses an indirect prompt injection surface as it processes external .tex files through the compiler, linter, and diagram rendering engines (Mermaid/Graphviz) without explicit sanitization or boundary markers mentioned in the instructions.
Recommendations
- HIGH: Downloads and executes remote code from: https://raw.githubusercontent.com/JheisonMB/texforge/main/install.sh - DO NOT USE without thorough review
Audit Metadata