nia-docs
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Bash tool to execute a Python harness for documentation search tasks.
- [PROMPT_INJECTION]: The skill retrieves and processes untrusted documentation and code snippets from external package registries (npm, PyPI, Go, Crates), creating an attack surface for indirect prompt injection.
- Ingestion points: Search results containing package documentation and code examples entering the agent context via scripts/mcp/nia_docs.py.
- Boundary markers: None are defined to separate external content from system instructions.
- Capability inventory: The skill has access to the Bash and Read tools.
- Sanitization: No sanitization or validation of the retrieved external content is specified.
Audit Metadata