skills/rudrankriyam/foundation-models-framework-lab/foundation-models-os27-updater/Gen Agent Trust Hub
foundation-models-os27-updater
Pass
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to use shell commands for project auditing and verification. This includes
git status,find, andripgrep(rg) for discovery, andxcrun,swift build,swift test, andxcodebuildfor SDK inspection and compilation checks. - [EXTERNAL_DOWNLOADS]: The use of
swift buildandxcodebuildimplies the potential download of external dependencies defined in the user'sPackage.swiftor Xcode project. These operations are conducted through standard package managers as part of the intended development workflow. - [DATA_EXPOSURE_AND_EXFILTRATION]: The skill references a specific local path (
/Users/rudrank/Downloads/Xcode-beta.app/Contents/Developer) as an example for theDEVELOPER_DIRenvironment variable. This is an author-specific reference and does not involve unauthorized access to sensitive user data or external network exfiltration. - [PROMPT_INJECTION]: The skill contains an indirect prompt injection surface as it processes untrusted data from the local project files.
- Ingestion points: Project source code and configuration files read by
rgandfindinSKILL.md. - Boundary markers: None specified for the output of the search commands.
- Capability inventory: Shell command execution via
swift build,swift test, andxcodebuildinSKILL.md. - Sanitization: No explicit sanitization or validation of the content read from files is mentioned before processing.
Audit Metadata