Skills
skills/viktor-ferenczi/se-dev-skills/se-dev-plugin/Gen Agent Trust Hub

se-dev-plugin

Pass

Audited by Gen Agent Trust Hub on May 9, 2026

Risk Level: SAFEREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [REMOTE_CODE_EXECUTION]: Prepare.bat downloads and executes the uv environment manager installation script from astral.sh using PowerShell.
  • [EXTERNAL_DOWNLOADS]: The skill downloads busybox.exe for UNIX command support and clones the PluginHub registry and various plugin source codes from GitHub.
  • [COMMAND_EXECUTION]: Multiple scripts execute shell commands like git, uv, and powershell to manage the development environment and source code repositories.
  • [PROMPT_INJECTION]: The skill indexes and allows searching through third-party code downloaded from GitHub, which creates a potential surface for Indirect Prompt Injection.
  • Ingestion points: Third-party plugin source code is downloaded from GitHub and indexed by index_plugins.py into local CSV files.
  • Boundary markers: None. Search results from the plugin index are presented directly to the agent context.
  • Capability inventory: The skill allows compilation (dotnet build), shell script execution (Prepare.bat), and Python script execution (uv run).
  • Sanitization: None. The indexed code content is processed and displayed without specific sanitization or filtering.
Audit Metadata
Risk Level
SAFE
Analyzed
May 9, 2026, 09:09 PM
Security Audit — agent-trust-hub — se-dev-plugin