bc-security

Pass

Audited by Gen Agent Trust Hub on Mar 19, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill facilitates the retrieval of untrusted external content, creating an attack surface for indirect prompt injection.
  • Ingestion points: The agent is instructed to use WebSearch and WebFetch tools to obtain live documentation (SKILL.md).
  • Boundary markers: There are no explicit instructions or delimiters provided to ensure that instructions embedded within fetched documentation are ignored or treated as data rather than commands.
  • Capability inventory: The skill has access to sensitive tools including Bash, Write, and Edit (SKILL.md), which increases the potential impact of a successful injection attack.
  • Sanitization: No mechanisms for validating or sanitizing the content retrieved from external sources are defined in the skill.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 19, 2026, 07:32 AM
Security Audit — agent-trust-hub — bc-security