pp-skool
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides instructions to download and install a binary using npx -y @mvanhorn/printing-press and go install github.com/mvanhorn/printing-press-library/... These resources belong to the recognized vendor mvanhorn and involve the execution of code downloaded at runtime.
- [DATA_EXFILTRATION]: The CLI tool includes a --deliver webhook: flag, allowing users or agents to transmit command output to arbitrary external URLs via HTTP POST. This capability could be used to send community data to external endpoints.
- [COMMAND_EXECUTION]: The skill relies on executing the skool-pp-cli binary to perform its tasks, which include running SQL queries against a local database and performing file system operations for course exports.
- [PROMPT_INJECTION]: The skill processes untrusted content from Skool.com communities, such as forum posts and course content, which could contain malicious instructions designed to influence the agent's behavior.
- Ingestion points: Content retrieved via skool-pp-cli posts top, classroom export, and community info.
- Boundary markers: None specified in the instructions.
- Capability inventory: Shell command execution (Bash), file system writes, and network operations (webhooks).
- Sanitization: No sanitization or validation of the external content is described.
Audit Metadata