Skills
skills/solid-company/solid-jobs-skills/jobs-create-profile/Gen Agent Trust Hub

jobs-create-profile

Fail

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill downloads installation scripts (install-sjctl.sh, install-sjctl.ps1) from the author's official GitHub organization (solid-company) to provision the required sjctl management tool.
  • [REMOTE_CODE_EXECUTION]: Instructs the agent to execute downloaded shell or PowerShell scripts by piping them directly to interpreters (bash, iex) for automated environment setup.
  • [COMMAND_EXECUTION]: Uses the sjctl CLI tool to perform database operations including adding, importing, and listing candidate profiles. It also provides a fallback to execute source code using go run.
  • [PROMPT_INJECTION]: The skill handles untrusted external data which could potentially contain indirect instructions.
  • Ingestion points: Processes pasted CV text and user-provided self-descriptions as input (SKILL.md).
  • Boundary markers: No specific delimiters or safety instructions are defined to separate user-provided content from agent instructions.
  • Capability inventory: Includes command execution via sjctl, file system operations (writing to temp files), and interaction with other tools (/jobs-evaluate, /jobs-digest).
  • Sanitization: The instructions do not specify any validation or sanitization steps for the input text before it is processed and stored.
Recommendations
  • HIGH: Downloads and executes remote code from: https://raw.githubusercontent.com/solid-company/solid-jobs-skills/main/scripts/install-sjctl.sh - DO NOT USE without thorough review
Audit Metadata
Risk Level
HIGH
Analyzed
Jun 17, 2026, 02:35 PM
Security Audit — agent-trust-hub — jobs-create-profile