Skills
skills/jimliuxinghai/jim-skills/summarize-ai-list-daily/Gen Agent Trust Hub

summarize-ai-list-daily

Pass

Audited by Gen Agent Trust Hub on Apr 19, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill requires the agent to execute a local Python script scripts/prepare_daily_summary.py to identify and list files for processing.
  • [DATA_EXFILTRATION]: The skill accesses, reads, and writes files within a hardcoded local directory path (/Users/yangyilin/docs/ai-list/), which involves processing potentially sensitive local user documents.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection. 1. Ingestion points: Reads markdown files from local storage in SKILL.md. 2. Boundary markers: No delimiters or ignore-instructions warnings are used when reading source files. 3. Capability inventory: Includes local command execution via scripts/prepare_daily_summary.py and file write operations for daily.md. 4. Sanitization: No content validation or sanitization is performed on the ingested markdown data.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 19, 2026, 04:34 PM