session-logs
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs expected operations for historical context retrieval and contains no malicious code, obfuscation, or data exfiltration patterns.
- [COMMAND_EXECUTION]: The skill instructs the agent to use standard system utilities including jq, rg, awk, and head via shell pipelines to parse local session logs. These commands are necessary for the skill's primary function and are targeted at the agent's internal data directory (~/.clawdbot/).
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface because it processes untrusted historical conversation data. 1. Ingestion points: Previous conversation messages are read from JSONL files in ~/.clawdbot/agents//sessions/. 2. Boundary markers: None present in the command templates. 3. Capability inventory: Shell execution of search and filtering tools. 4. Sanitization: The skill uses jq filters to extract specific 'text' fields, providing structural validation of the data before it is returned to the agent context.
Audit Metadata