Skills
skills/mvanhorn/printing-press-library/pp-cloud-run-admin/Gen Agent Trust Hub

pp-cloud-run-admin

Pass

Audited by Gen Agent Trust Hub on May 8, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the cloud-run-admin-pp-cli and cloud-run-admin-pp-mcp tools from the author's GitHub and npm repositories.
  • [COMMAND_EXECUTION]: Orchestrates the execution of the Cloud Run Admin CLI to perform operations like listing services, running jobs, and managing IAM policies.
  • [DATA_EXFILTRATION]: Features a --deliver webhook:<url> flag and a feedback mechanism that can transmit command output or local notes to external network endpoints.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it ingests and processes untrusted data from the Cloud Run Admin API, which could be manipulated to include malicious instructions.
  • Ingestion points: Cloud Run API response data such as service names, job titles, and status messages.
  • Boundary markers: While output is structured as JSON, there are no specific markers to prevent the agent from following instructions embedded in the data.
  • Capability inventory: Execution of shell commands via the CLI tool.
  • Sanitization: The skill does not describe any specific sanitization or validation of the content received from the API before presenting it to the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
May 8, 2026, 05:56 PM