xray-scan
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides instructions for running the xray binary to perform various web security assessments, such as SQL injection and command injection scans. This involves executing the tool with user-defined targets.
- [EXTERNAL_DOWNLOADS]: The documentation references the official GitHub repositories for the xray scanner and its plugins (github.com/chaitin/xray). These are well-known resources in the cybersecurity community.
- [DATA_EXFILTRATION]: While the tool performs network operations to probe target web applications, no patterns of sensitive data exfiltration or credential harvesting were detected.
- [PROMPT_INJECTION]: The skill uses clear, instructional language for tool usage and does not contain patterns attempting to override agent behavior or safety filters.
Audit Metadata