process-dedup-review
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The script run-process-dedup-review.mjs executes the tiangong CLI tool to perform the deduplication review.
- [EXTERNAL_DOWNLOADS]: The CLI tool performs remote enrichment by fetching data from the vendor's official API endpoints when credentials are provided.
- [DATA_EXFILTRATION]: Input process data is sent to the vendor's API for metadata enrichment and reference scanning within the authenticated user's scope.
- [PROMPT_INJECTION]: The skill ingests untrusted data from duplicate-groups.json, which could contain indirect instructions. Ingestion points: duplicate-groups.json via the --input argument. Boundary markers: The skill uses structured JSON and explicit review rules in references/review-rules.md to guide the agent. Capability inventory: Command execution via the wrapper script and file writing for output artifacts. Sanitization: The logic is handled by the CLI tool rather than direct LLM processing of the JSON strings.
Audit Metadata