skills/zytedata/skills/scrape-define/Gen Agent Trust Hub

scrape-define

Pass

Audited by Gen Agent Trust Hub on Jul 7, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill downloads web content from user-provided URLs. This is an intended primary function for defining extraction specs and is handled by a local downloader script.
  • [COMMAND_EXECUTION]: Executes a local Python script download.py via uv run. The script is located within the vendor's skill directory structure, representing an internal tool for page retrieval.
  • [COMMAND_EXECUTION]: Uses Bash for project directory management and logic. The execution pattern for passing data to the downloader uses a quoted heredoc (<<'EOF'), which effectively prevents command injection from the user-supplied URL strings.
  • [PROMPT_INJECTION]: Implements strong isolation constraints by explicitly forbidding the main agent from parsing HTML directly, requiring it to use a subagent for analysis. This minimizes the risk of indirect prompt injection from the content of the scraped pages.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 7, 2026, 04:53 PM
Security Audit — agent-trust-hub — scrape-define