scrape-scrapy-cloud
Pass
Audited by Gen Agent Trust Hub on Jul 7, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: Executes shell commands to manage Scrapy projects, including deployment and job scheduling via the
shubtool. It also uses system utilities likexdg-opento provide browser access to vendor dashboards. - [EXTERNAL_DOWNLOADS]: Fetches the official
shubCLI from PyPI usinguvxand retrieves metadata from the Docker Hub API. These operations target well-known and trusted service providers. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection when processing external data such as logs or project configurations.
- Ingestion points: Reads project configuration files (
scrapinghub.yml), spider logs, and job item statistics. - Boundary markers: None implemented in instructions to isolate processed data from agent instructions.
- Capability inventory: Includes subprocess execution, file system modifications, and network API requests.
- Sanitization: Does not perform validation or filtering on the contents of logs or items retrieved from the API.
Audit Metadata