find-service-providers

Fail

Audited by Gen Agent Trust Hub on May 8, 2026

Risk Level: HIGHCREDENTIALS_UNSAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [CREDENTIALS_UNSAFE]: The skill directs the agent to read sensitive configuration files, specifically .env.local and .env, in the current working directory to find a SERVICEGRAPH_TOKEN. This access exposes the entirety of these files, which commonly store unrelated and sensitive credentials.
  • [EXTERNAL_DOWNLOADS]: The skill performs network operations to api.servicegraph.co for data retrieval and authentication purposes.
  • [COMMAND_EXECUTION]: The instructions provide examples for executing shell commands including curl for API requests and openssl for local hash generation.
  • [PROMPT_INJECTION]: The skill ingests data from an external API, presenting a risk surface for indirect prompt injection. Ingestion points: Data enters the agent's context from api.servicegraph.co endpoints (/tags, /search, /get). Boundary markers: None provided to separate API content from instructions. Capability inventory: Includes shell command execution and local sensitive file access. Sanitization: No filtering or validation of external API responses is mentioned.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
May 8, 2026, 08:53 AM
Security Audit — agent-trust-hub — find-service-providers