asana
Pass
Audited by Gen Agent Trust Hub on Apr 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Communicates with official Asana API endpoints (app.asana.com) to perform project management tasks. As a well-known service, these network operations are considered standard behavior for this skill's purpose.
- [COMMAND_EXECUTION]: Utilizes standard command-line tools like
curlandjqfor executing API requests and parsing JSON responses. Temporary files are used appropriately in/tmpfor staging request payloads. - [DATA_EXFILTRATION]: Authentication is managed via the
ASANA_TOKENenvironment variable, which is the recommended method for secure credential handling in agent skills. No access to sensitive local files (e.g., SSH keys, AWS credentials) was detected. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests untrusted data from external API responses (such as task names or project notes).
- Ingestion points: API response data retrieved from
app.asana.comviacurlcommands. - Boundary markers: Not present; the agent processes raw data from the API.
- Capability inventory: Shell command execution via
curlandjqas documented inSKILL.md. - Sanitization: No explicit sanitization or escaping of retrieved content is performed before processing.
Audit Metadata