scrape-scrapy-cloud

Pass

Audited by Gen Agent Trust Hub on Jul 7, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: Executes shell commands to manage Scrapy projects, including deployment and job scheduling via the shub tool. It also uses system utilities like xdg-open to provide browser access to vendor dashboards.
  • [EXTERNAL_DOWNLOADS]: Fetches the official shub CLI from PyPI using uvx and retrieves metadata from the Docker Hub API. These operations target well-known and trusted service providers.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection when processing external data such as logs or project configurations.
  • Ingestion points: Reads project configuration files (scrapinghub.yml), spider logs, and job item statistics.
  • Boundary markers: None implemented in instructions to isolate processed data from agent instructions.
  • Capability inventory: Includes subprocess execution, file system modifications, and network API requests.
  • Sanitization: Does not perform validation or filtering on the contents of logs or items retrieved from the API.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 7, 2026, 04:54 PM
Security Audit — agent-trust-hub — scrape-scrapy-cloud