obs-management
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides bash snippets that execute the 'osc' CLI tool to manage, build, and debug OBS packages.
- [DATA_EXFILTRATION]: Hardcodes a specific user path (/home/adam/OBS/home/aspiers) as the primary workspace. This identifies a local environment structure but does not expose credentials.
- [PROMPT_INJECTION]: The skill processes data from external sources like build logs and package definitions, creating a potential surface for indirect prompt injection. * Ingestion points: Package metadata and build logs retrieved via 'osc bl' commands in SKILL.md. * Boundary markers: Absent. * Capability inventory: Executes system commands via 'osc' and performs file system writes. * Sanitization: None.
Audit Metadata