industry-board-analyzer
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to execute shell commands to activate a virtual environment and run local Python scripts (e.g.,
python ../findata-toolkit-cn/scripts/views_runner.py). This is a core functional requirement for the skill's data retrieval capabilities. - [EXTERNAL_DOWNLOADS]: The skill uses
pip installto install dependencies from a local requirements file (../findata-toolkit-cn/requirements.txt). While the file is local, it results in the installation of external Python packages into the environment. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests and processes data from external financial platforms (East Money, Tonghuashun, AKShare). • Ingestion points: Data is fetched via external tool views like
stock_board_industry_name_emandstock_fund_flow_industry. • Boundary markers: The skill lacks explicit delimiters or instructions to ignore embedded commands within the fetched market data. • Capability inventory: The skill has the capability to execute shell commands and run Python scripts. • Sanitization: There is no evidence of sanitization or validation logic for the external data before it is processed by the agent.
Audit Metadata