Skills
skills/ljagiello/ctf-skills/solve-challenge/Gen Agent Trust Hub

solve-challenge

Pass

Audited by Gen Agent Trust Hub on Apr 14, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill orchestrates the use of standard security and debugging tools (e.g., binwalk, checksec, strings, nc, xxd) and Python scripts to perform local file analysis and remote network interaction.
  • [EXTERNAL_DOWNLOADS]: Mentions an internal installation script (scripts/install_ctf_tools.sh) to provision the environment with necessary dependencies from standard repositories (apt, brew, pip, etc.).
  • [PROMPT_INJECTION]: The skill is designed to process untrusted data from CTF challenges, which presents an inherent surface for indirect prompt injection.
  • Ingestion points: The agent reads data from local challenge files and remote service responses via tools like curl, nc, and grep.
  • Boundary markers: No specific delimiters are defined in the instructions to isolate external data from the agent's internal reasoning.
  • Capability inventory: The agent has access to Bash, Python 3, and network tools (WebFetch, WebSearch), allowing for a wide range of actions based on analyzed data.
  • Sanitization: The skill instructions do not specify sanitization or validation of the input content before it is processed.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 14, 2026, 04:32 AM