Skills
skills/laurigates/claude-plugins/shell-expert/Gen Agent Trust Hub

shell-expert

Pass

Audited by Gen Agent Trust Hub on May 14, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill creates an attack surface for indirect prompt injection as it is designed to ingest and process external files using powerful shell and file manipulation tools.
  • Ingestion points: The agent is instructed to read files using jq, yq, fd, and rg as described in SKILL.md and REFERENCE.md.
  • Boundary markers: There are no instructions provided to use specific delimiters or to ignore potential instructions embedded within the data being processed.
  • Capability inventory: The skill has access to tools such as Bash, BashOutput, Write, Edit, and TodoWrite, which can be used to execute commands or modify the system.
  • Sanitization: The instructions do not include steps for validating or sanitizing the content of external files before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
May 14, 2026, 12:48 PM
Security Audit — agent-trust-hub — shell-expert