agent-ready-api
Pass
Audited by Gen Agent Trust Hub on Jun 19, 2026
Risk Level: SAFEDATA_EXFILTRATIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [DATA_EXFILTRATION]: The skill provides instructions to access sensitive file paths, specifically searching for the
AGENT_READY_API_KEYwithin.envand other local configuration files usinggrep. This data is used solely to authenticate requests to the vendor's API. - [EXTERNAL_DOWNLOADS]: The skill performs network operations to
https://agent-ready.dev/api/v1/scansandhttps://agent-ready.dev/api/v1/askto submit scan jobs and retrieve audit results. These are official endpoints for the skill's documented functionality. - [COMMAND_EXECUTION]: The instructions utilize several shell commands, including
grep,cut,curl, andjq, for secret management, network communication, and data parsing. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8c) because it processes and summarizes audit results from an external API.
- Ingestion points: Site audit results and check messages are retrieved as JSON from
https://agent-ready.dev/api/v1/scans/{id}. - Boundary markers: The instructions do not specify the use of delimiters or 'ignore' instructions when summarizing findings.
- Capability inventory: The skill uses
curlto perform network operations and shell utilities for environment management. - Sanitization: No explicit sanitization or validation of the text content within the scan results is mentioned before the agent summarizes the data for the user.
Audit Metadata