naming-house
Pass
Audited by Gen Agent Trust Hub on Jul 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
naming-housepackage from the npm registry. It also references other packages includingsaju-fortune,namefyi, andkorean-strokefor auxiliary calculations. - [COMMAND_EXECUTION]: The skill utilizes shell commands to perform global package installations (
npm install -g) and to execute Node.js logic using heredocs (`node - <<'JS'`).
- [INDIRECT_PROMPT_INJECTION]: The workflow creates a surface for indirect prompt injection by interpolating untrusted user inputs—such as surnames, birth dates, and name candidates—directly into dynamically generated JavaScript templates executed via the shell.
- Ingestion points: User-provided inputs for
surname,surnameHanja,birthDate,birthTime, and thecandidatesarray are processed inSKILL.md. - Boundary markers: No specific delimiters or "ignore embedded instructions" warnings are utilized when interpolating these values into the script templates.
- Capability inventory: The skill possesses the capability to execute shell commands (
npm,node) as described in the workflow sections ofSKILL.md. - Sanitization: The instructions do not specify any escaping or validation mechanisms for the user-supplied strings before they are placed into the executable script blocks.
Audit Metadata