muapi-logo-generator
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill uses curl to communicate with api.muapi.ai, which is the service domain associated with the muapi tool.
- [COMMAND_EXECUTION]: The skill executes muapi CLI commands to generate images and configure authentication settings.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface due to direct interpolation of user inputs. 1. Ingestion points: Inputs brand_name, style, industry, colors, and background in SKILL.md. 2. Boundary markers: No delimiters or boundary instructions are present to encapsulate user data. 3. Capability inventory: The skill has the ability to execute shell commands and network operations via the muapi CLI and curl. 4. Sanitization: No sanitization or validation of the input strings is implemented before they are used in the prompt.
Audit Metadata