pp-ebay
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFEDATA_EXFILTRATIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires installing a CLI tool via
npxfrom the@mvanhorn/printing-presspackage orgo installfrom thegithub.com/mvanhorn/printing-press-libraryrepository. - [CREDENTIALS_UNSAFE]: Authentication relies on extracting eBay session cookies from the user's Chrome browser using the
pycookiecheatlibrary. - [DATA_EXFILTRATION]: The CLI tool includes a
--deliver webhook:<url>parameter that can transmit query results to an external HTTP server. - [DATA_EXFILTRATION]: A feedback feature can be configured to send local diagnostic data to a remote URL defined in the
EBAY_FEEDBACK_ENDPOINTenvironment variable. - [COMMAND_EXECUTION]: The agent uses the
Bashtool to run theebay-pp-clibinary with user-specified arguments. - [PROMPT_INJECTION]: The skill is potentially vulnerable to indirect prompt injection when processing data from eBay listings.
- Ingestion points: Data from active and sold eBay listings enters the context through various search commands.
- Boundary markers: No specific delimiters are used to wrap external content from eBay listings.
- Capability inventory: The skill can execute shell commands and reach external network endpoints via the webhook feature.
- Sanitization: There is no mention of sanitizing or filtering data from listing titles or descriptions before it is processed by the agent.
Audit Metadata