Skills
skills/mvanhorn/printing-press-library/pp-craigslist/Gen Agent Trust Hub

pp-craigslist

Pass

Audited by Gen Agent Trust Hub on May 8, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the agent to install the craigslist-pp-cli and craigslist-pp-mcp tools from the vendor's GitHub repository (github.com/mvanhorn) or via npx from the @mvanhorn scope.
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to run the craigslist-pp-cli binary with various subcommands and arguments for data retrieval and analysis.
  • [DATA_EXFILTRATION]: The CLI tool includes a --deliver webhook:<url> flag and a feedback command that can send listing data or notes to external endpoints, which are documented features of the tool.
  • [PROMPT_INJECTION]: The skill is exposed to untrusted Craigslist listing content (titles and descriptions) through its search and watch functions, representing an indirect prompt injection surface. No explicit sanitization or boundary markers are described in the instructions to handle malicious input within these listings.
Audit Metadata
Risk Level
SAFE
Analyzed
May 8, 2026, 05:56 PM