market-finder
Pass
Audited by Gen Agent Trust Hub on May 28, 2026
Risk Level: SAFE
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill possesses an attack surface for indirect prompt injection as it ingests and processes content from external websites and user-supplied files (Google Sheets and CSVs).
- Ingestion points: Data is ingested through
nimble search,nimble extract, andnimble agent runfor web content, and viacatornimble extractfor user-provided reference lists. - Boundary markers: No specific delimiters or "ignore previous instructions" warnings are utilized when handling external data.
- Capability inventory: The skill can execute Nimble CLI commands, perform file system writes in
~/.nimble/, and interact with the user viaAskUserQuestion. - Sanitization: There is no evidence of sanitization or validation of the ingested external content before it is processed.
- [COMMAND_EXECUTION]: The skill uses the Bash tool to execute various commands including Nimble CLI operations, file system management (
mkdir,ls,cat,rm), and Python snippets for date calculations. This behavior is necessary for its core functionality of data discovery and checkpointing. - [EXTERNAL_DOWNLOADS]: The documentation includes instructions for installing the official
@nimble-way/nimble-clipackage from npm, which is a standard requirement for utilizing Nimble's services.
Audit Metadata