pp-skool

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill provides instructions to download and install a binary using npx -y @mvanhorn/printing-press and go install github.com/mvanhorn/printing-press-library/... These resources belong to the recognized vendor mvanhorn and involve the execution of code downloaded at runtime.
  • [DATA_EXFILTRATION]: The CLI tool includes a --deliver webhook: flag, allowing users or agents to transmit command output to arbitrary external URLs via HTTP POST. This capability could be used to send community data to external endpoints.
  • [COMMAND_EXECUTION]: The skill relies on executing the skool-pp-cli binary to perform its tasks, which include running SQL queries against a local database and performing file system operations for course exports.
  • [PROMPT_INJECTION]: The skill processes untrusted content from Skool.com communities, such as forum posts and course content, which could contain malicious instructions designed to influence the agent's behavior.
  • Ingestion points: Content retrieved via skool-pp-cli posts top, classroom export, and community info.
  • Boundary markers: None specified in the instructions.
  • Capability inventory: Shell command execution (Bash), file system writes, and network operations (webhooks).
  • Sanitization: No sanitization or validation of the external content is described.
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 02:50 AM
Security Audit — agent-trust-hub — pp-skool