abductive-oracle
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The
abductive_geminibash function inSKILL.mdexecutes shell commands includinggcloud,curl, andjqto manage authentication and interact with the Gemini API. - [EXTERNAL_DOWNLOADS]: The skill initiates network requests to
googleapis.com, which is a well-known and trusted service provider, for the purpose of natural language processing. - [PROMPT_INJECTION]: The skill ingests untrusted observation data into an LLM prompt within
SKILL.md. While the data is properly escaped usingjqto maintain JSON integrity, the design lacks explicit delimiters or instructions to the model to disregard embedded commands, presenting a low-risk surface for indirect prompt injection. This risk is further mitigated as the resulting output is strictly parsed for numeric fields.
Audit Metadata