ziniao-department
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes the
ziniao-clitool to manage department data. It includes support for listing, creating, updating, and deleting records via subcommands likedepartment listanddepartment delete. Standard administrative safety patterns are observed, such as requiring confirmation for high-risk operations and referencing a shared security policy. - [INDIRECT_PROMPT_INJECTION]: The skill processes organizational data returned by the CLI (department names and IDs).
- Ingestion points: Output from the
department listcommand is ingested into the agent's context for visualization and further action selection. - Boundary markers: Instructions recommend using structured formats (JSON) and tree visualizations, which provide some inherent structure to distinguish data from instructions.
- Capability inventory: The skill possesses write capabilities including creating and deleting departments, but these are constrained to the vendor-provided CLI tool.
- Sanitization: While no explicit instruction-filtering is mentioned for department names, the operational logic uses the data strictly as parameters for subsequent CLI calls.
Audit Metadata