scrape-define
Pass
Audited by Gen Agent Trust Hub on Jul 7, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill downloads web content from user-provided URLs. This is an intended primary function for defining extraction specs and is handled by a local downloader script.
- [COMMAND_EXECUTION]: Executes a local Python script
download.pyviauv run. The script is located within the vendor's skill directory structure, representing an internal tool for page retrieval. - [COMMAND_EXECUTION]: Uses Bash for project directory management and logic. The execution pattern for passing data to the downloader uses a quoted heredoc (
<<'EOF'), which effectively prevents command injection from the user-supplied URL strings. - [PROMPT_INJECTION]: Implements strong isolation constraints by explicitly forbidding the main agent from parsing HTML directly, requiring it to use a subagent for analysis. This minimizes the risk of indirect prompt injection from the content of the scraped pages.
Audit Metadata