pp-adguard-home
Pass
Audited by Gen Agent Trust Hub on Jun 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the
adguard-home-pp-clitool from the@mvanhorn/printing-press-librarynpm package. - [REMOTE_CODE_EXECUTION]: Installs binaries via
go installfrom the vendor's repository atgithub.com/mvanhorn/printing-press-library. - [COMMAND_EXECUTION]: Executes the
adguard-home-pp-clibinary to manage AdGuard Home settings, including TLS configuration, filtering rules, and DHCP leases. It also manages local configuration files in the user's home directory (~/.config/adguard-home-pp-cli/config.toml). - [DATA_EXFILTRATION]: The skill uses a tool that supports a
--deliver webhook:<url>flag, which can be used to send command results to external URLs. - [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection by processing and displaying data from AdGuard Home logs and client lists.
- Ingestion points: REST API outputs from AdGuard Home (query logs, client info).
- Boundary markers: Not explicitly defined for tool output in the instructions.
- Capability inventory: Binary execution of
adguard-home-pp-cli, network requests via webhooks, and local file system writes. - Sanitization: Use of
--agentand--jsonflags to ensure machine-readable, non-interactive output.
Audit Metadata