Skills
skills/terminalskills/skills/nmap-recon/Gen Agent Trust Hub

nmap-recon

Pass

Audited by Gen Agent Trust Hub on Apr 16, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides various Nmap command templates for network discovery and security auditing, as well as a local Python script used to parse Nmap's XML output into a readable format.
  • [PROMPT_INJECTION]: The skill defines a workflow for processing untrusted data obtained from network scanning. While this creates an attack surface for indirect prompt injection via manipulated network responses, this is an inherent risk of network auditing tools.
  • Ingestion points: Reads Nmap output from 'scan-results.xml' in SKILL.md.
  • Boundary markers: None used to separate scan results from agent instructions.
  • Capability inventory: Includes execution of shell commands (nmap) and a Python interpreter (python3).
  • Sanitization: Does not include instructions or code to sanitize or validate external scan data before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 16, 2026, 11:43 PM