monitoring-observability
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (LOW): The skill provides tools (scripts/log-aggregator.py, scripts/trace-analyzer.sh) that ingest and process external data sources like application logs and distributed trace files. This creates a surface where an attacker could embed malicious instructions in log messages or trace attributes to influence the behavior of the agent when it analyzes these files. Ingestion points: scripts/log-aggregator.py and scripts/trace-analyzer.sh. Boundary markers: Absent. Capability inventory: File read operations and system-level metrics access (psutil). Sanitization: None.
- Data Exposure (SAFE): The scripts/metrics-collector.py script accesses system information including process lists, CPU usage, and memory stats. While this involves sensitive system data, it is the primary and intended purpose of an observability skill and does not involve unauthorized exfiltration.
Audit Metadata