Skills
skills/vm0-ai/vm0-skills/jira/Gen Agent Trust Hub

jira

Pass

Audited by Gen Agent Trust Hub on Apr 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill relies on shell commands using curl and jq to interact with the Jira API. This includes operations like creating, searching, and deleting issues.
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection through the ingestion of external data.
  • Ingestion points: The skill fetches issue descriptions, summaries, and user comments from the Jira API.
  • Boundary markers: No delimiters or safety instructions are provided to the agent to distinguish between its instructions and the data retrieved from Jira.
  • Capability inventory: The agent has the capability to execute shell commands (curl) and perform network operations.
  • Sanitization: The instructions do not include any steps to sanitize, validate, or escape content retrieved from the external API before the agent processes it.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 17, 2026, 04:44 PM