Skills
skills/mathews-tom/armory/arxiv-figures/Gen Agent Trust Hub

arxiv-figures

Pass

Audited by Gen Agent Trust Hub on May 3, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to execute shell commands (e.g., convert, ps2pdf, optipng) on file paths parsed from the user's project. This creates a risk of command injection if filenames or paths are maliciously crafted to contain shell metacharacters.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its processing of untrusted project data.
  • Ingestion points: The agent parses figure paths from \includegraphics calls within .tex files.
  • Boundary markers: No delimiters or instructions are provided to ignore potential malicious content or instructions embedded within the LaTeX source.
  • Capability inventory: The agent has the capability to execute multiple shell-based image processing tools.
  • Sanitization: The instructions do not include steps for validating or sanitizing the extracted file paths before they are used in command-line arguments.
Audit Metadata
Risk Level
SAFE
Analyzed
May 3, 2026, 02:40 PM