Skills
skills/automateyournetwork/netclaw/nso-device-ops/Gen Agent Trust Hub

nso-device-ops

Pass

Audited by Gen Agent Trust Hub on Mar 18, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTIONCREDENTIALS_UNSAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill references an external inventory resource at https://resources.cisco-nso-mcp.io/environment associated with the NSO MCP functionality.
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection as it ingests and processes configuration data from external network devices. * Ingestion points: get_device_config and get_device_state tools in SKILL.md retrieve data from external devices. * Boundary markers: Absent; there are no instructions to the model to ignore potential commands within the retrieved device data. * Capability inventory: The skill can synchronize configurations (sync_from_device) and retrieve platform metadata via the MCP server (SKILL.md). * Sanitization: Absent; the skill does not specify any sanitization or validation for the content pulled from network devices.
  • [CREDENTIALS_UNSAFE]: The documentation lists default credentials (admin/admin) for the NSO environment variables NSO_USERNAME and NSO_PASSWORD.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 18, 2026, 06:12 AM