dns-record-analyzer
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill constructs and executes shell commands using the
digutility to query DNS records. Step 1 of the instructions demonstrates assigning a user-provided domain to a shell variable (DOMAIN="example.com") and interpolating it into commands (e.g.,dig +short A $DOMAIN). This creates a potential command injection surface if the agent fails to sanitize input containing shell metacharacters (such as;,|, or backticks).
Audit Metadata