arize-instrumentation
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires installing official Arize and OpenTelemetry instrumentation packages (e.g., 'arize-otel', '@opentelemetry/sdk-trace-node'). These are trusted vendor-provided libraries intended for observability.
- [REMOTE_CODE_EXECUTION]: The skill suggests running the 'arize-tracing-assistant' MCP tool via 'uvx'. This is a legitimate utility from the skill's author (Arize-ai) for assisting with codebase tracing.
- [SAFE]: Analysis of the project structure and dependency manifests presents a surface for indirect prompt injection. Evidence: (1) Ingestion points: 'SKILL.md' Phase 1 analysis of local codebase files; (2) Boundary markers: Absent; (3) Capability inventory: 'SKILL.md' Phase 2 package installation and code writing; (4) Sanitization: Absent. This risk is inherent to instrumentation tasks and is mitigated by the skill's 'inspection over mutation' design and two-phase flow.
Audit Metadata