claude-consult
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill documentation provides templates for executing the
claudeCLI tool to perform codebase analysis, debugging, and security audits. This is part of the skill's intended functionality. - [PROMPT_INJECTION]: Instructions include passing user-provided questions directly as arguments to a shell command. While intended for specialist consultation, this creates an ingestion point for untrusted data that could be exploited via indirect prompt injection if the user input is not properly sanitized before being passed to the CLI.
Audit Metadata