linux-admin
Warn
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides instructions for high-privilege system administration via sudo, including package management (apt), user account creation (useradd), and kernel tuning (sysctl).\n- [COMMAND_EXECUTION]: Commands for disk partitioning (fdisk) and filesystem formatting (mkfs) are included, which represent high-risk operations capable of causing permanent data loss.\n- [PROMPT_INJECTION]: An indirect prompt injection surface exists through the use of journalctl to read system logs.\n
- Ingestion points: System log data via journalctl in SKILL.md.\n
- Boundary markers: Absent; no delimiters are used to separate untrusted log data from agent instructions.\n
- Capability inventory: Root-level access via sudo for apt, useradd, fdisk, and sysctl.\n
- Sanitization: Absent; there is no validation or filtering of log content before processing.
Audit Metadata