generating-and-analyzing-sboms

Pass

Audited by Gen Agent Trust Hub on Jun 24, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill's documentation and prerequisites section include instructions to download and execute installation scripts for Syft and Grype directly from the Anchore organization on GitHub. Anchore is a recognized vendor in the software supply chain security domain.\n- [COMMAND_EXECUTION]: The helper script scripts/agent.py uses the subprocess module to execute syft, grype, and cosign commands. These executions are integral to the skill's stated purpose of generating and scanning software bills of materials.\n- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as it processes external data from images and SBOM files.\n
  • Ingestion points: The scripts/agent.py script reads vulnerability scan results from Grype in JSON format.\n
  • Boundary markers: No delimiters or ignore instructions are present in the tool processing logic.\n
  • Capability inventory: The skill has the ability to execute shell commands via the subprocess module in scripts/agent.py.\n
  • Sanitization: No explicit sanitization or filtering of the ingested data is performed beyond JSON parsing for quantitative summaries.\n- [PROMPT_INJECTION]: There is a discrepancy in the author metadata between the skill manifest (mahipal) and the license file (mukul975).
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 24, 2026, 12:04 AM
Security Audit — agent-trust-hub — generating-and-analyzing-sboms