federation-audit
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches and executes the
@claude-flow/plugin-agent-federationpackage from the official npm registry at runtime usingnpx. - [COMMAND_EXECUTION]: The skill executes the
ruflo-federationCLI tool vianpxto query structured logs. - [PROMPT_INJECTION]: The skill interpolates user-provided arguments (compliance mode, date range, and severity) directly into a shell command. This creates a surface for indirect prompt injection or command injection. (1) Ingestion points: User-supplied parameters parsed in the SKILL.md instructions. (2) Boundary markers: No explicit delimiters or instructions are provided to the agent to treat this data as non-executable. (3) Capability inventory: The skill utilizes the Bash tool to execute system commands. (4) Sanitization: No explicit validation or filtering logic is defined for the interpolated values.
Audit Metadata