Skills
skills/mvanhorn/printing-press-library/pp-fedex/Gen Agent Trust Hub

pp-fedex

Pass

Audited by Gen Agent Trust Hub on May 8, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of the fedex-pp-cli and fedex-pp-mcp binaries via npx and go install. These tools are hosted in the mvanhorn vendor's repositories on NPM and GitHub.
  • [COMMAND_EXECUTION]: The skill executes the fedex-pp-cli binary to perform shipping operations. This includes an sql subcommand that enables direct SQL queries on the local SQLite shipment database, which is a powerful administrative capability.
  • [DATA_EXFILTRATION]: The CLI supports routing command results and tracking updates to remote webhooks through the --deliver webhook:<url> and track watch --webhook <url> features. While intended for integration, this creates a channel for data to leave the local environment.
  • [PROMPT_INJECTION]: The skill presents an attack surface for indirect prompt injection by ingesting external data from CSV files in ship bulk commands and processing natural language via the which command. Ingestion points: orders.csv. Capabilities: Network (webhooks) and filesystem access. Boundary markers and sanitization are not explicitly defined in the instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
May 8, 2026, 06:00 PM