convert
Warn
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: MEDIUMPROMPT_INJECTIONCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [PROMPT_INJECTION]: The skill features a 'Self-Evolving Skill' directive and a 'Post-Execution Reflection' phase that explicitly instruct the agent to modify the SKILL.md file if issues are encountered. This self-modification capability is a risk because a malicious user could provide crafted input that tricks the agent into permanently rewriting its own instructions to include malicious behavior or backdoors.
- [COMMAND_EXECUTION]: The workflow involves the Bash tool and takes several user-controlled arguments, such as file paths and directory locations, which are used to build shell commands for the asciinema CLI. There is a risk of command injection if the agent does not properly sanitize these inputs before executing the shell strings.
- [DATA_EXFILTRATION]: The skill requests permission to use Glob, Bash, and Write tools, which provide comprehensive file system access. While the intended use is file conversion, the instructions to automatically 'fix' or 'update' the skill based on converted content could be exploited to read sensitive local data and write it into the output or the skill's own documentation.
- [SAFE]: The troubleshooting documentation suggests installing asciinema via Homebrew, which is a standard and well-known package manager.
Audit Metadata