Skills
skills/joelhooks/effectts-skills/effect-ts/Gen Agent Trust Hub

effect-ts

Warn

Audited by Gen Agent Trust Hub on Mar 20, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides patterns for executing shell commands using the @effect/platform Command module. Specifically, references/processes.md includes an example using Command.make("bash", "-c", command), which facilitates the execution of arbitrary shell strings.
  • [EXTERNAL_DOWNLOADS]: The skill defines patterns for making HTTP requests using the HttpClient module in references/http-clients.md. This includes request building with headers, query parameters, and JSON bodies targeting external APIs.
  • [PROMPT_INJECTION]: Indirect prompt injection surface identified.
  • Ingestion points: Processes user-provided TypeScript code for refactoring and analysis (SKILL.md).
  • Boundary markers: None identified for distinguishing code logic from embedded instructions.
  • Capability inventory: Shell command execution via Command.make (references/processes.md) and network requests via HttpClient (references/http-clients.md).
  • Sanitization: No explicit sanitization or validation of the code structure before processing or interpolation.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 20, 2026, 09:16 AM