pp-agent-capture
Pass
Audited by Gen Agent Trust Hub on May 25, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires installing the
agent-capture-pp-clibinary usingnpx -y @mvanhorn/printing-pressorgo install. These packages are hosted under the author's namespace on NPM and GitHub. - [COMMAND_EXECUTION]: The agent is instructed to execute various shell commands using the installed CLI to interact with macOS screen capture APIs, including
screenshot,record, andvhs. - [PROMPT_INJECTION]: The
ocrcommand extracts text from desktop windows and ingests it into the agent's context, creating an indirect prompt injection surface. Ingestion points: OCR text extracted from windows in SKILL.md. Boundary markers: None present. Capability inventory: Access to the host shell via theagent-capture-pp-clitool. Sanitization: No sanitization or validation of the extracted text is performed.
Audit Metadata