Skills
skills/windmill-labs/windmill-cli-docs/write-script-rust/Gen Agent Trust Hub

write-script-rust

Pass

Audited by Gen Agent Trust Hub on Jun 22, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the wmill CLI (a vendor-provided tool) to manage script testing, metadata generation, and deployment. Commands like wmill script preview and wmill generate-metadata are used to execute and prepare scripts locally.
  • [EXTERNAL_DOWNLOADS]: Rust scripts generated by the skill depend on standard, well-known libraries such as anyhow, serde, reqwest, and tokio. These dependencies are resolved from official Rust package registries.
  • [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection by facilitating the execution of scripts with user-supplied arguments. Evidence Chain:
  • Ingestion points: Script arguments provided by the user (interpolated into the -d flag of wmill script preview).
  • Boundary markers: Arguments are enclosed in single quotes.
  • Capability inventory: Execution of arbitrary Rust code (via wmill script preview) and file writes (via wmill generate-metadata).
  • Sanitization: The instructions do not specify any explicit validation or sanitization of the user-provided arguments before execution.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 22, 2026, 08:37 AM
Security Audit — agent-trust-hub — write-script-rust