Skills
skills/julianobarbosa/claude-code-skills/senhasegura/Gen Agent Trust Hub

senhasegura

Warn

Audited by Gen Agent Trust Hub on Jun 15, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches the official DSM CLI binary from the vendor's GitHub repository.
  • [COMMAND_EXECUTION]: Workflows involve executing the external DSM CLI binary to inject secrets into environments.
  • [COMMAND_EXECUTION]: Installation instructions utilize sudo for moving the CLI binary into system directories.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection attack surface (Category 8).
  • Ingestion points: Secret data fetched from senhasegura PAM and DSM API endpoints.
  • Boundary markers: The instructions lack explicit delimiters or safety markers for the fetched data.
  • Capability inventory: Provides capabilities for subprocess management, network operations, and file system writes.
  • Sanitization: The skill does not implement sanitization or validation for the content retrieved from the API.
  • [SAFE]: Consistently advocates for secure credential handling via environment variables and encrypted platform secret stores.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 15, 2026, 04:17 PM
Security Audit — agent-trust-hub — senhasegura