Skills
skills/bagelhole/devops-security-agent-skills/loki-logging/Gen Agent Trust Hub

loki-logging

Warn

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: MEDIUMCREDENTIALS_UNSAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [CREDENTIALS_UNSAFE] (MEDIUM): The Docker Compose configuration sets 'GF_AUTH_ANONYMOUS_ENABLED=true' and 'GF_AUTH_ANONYMOUS_ORG_ROLE=Admin', which allows unauthenticated users to perform administrative actions.
  • [EXTERNAL_DOWNLOADS] (MEDIUM): The skill instructs the user to download Helm charts from 'https://grafana.github.io/helm-charts' and uses Docker images from the 'grafana' organization, which are not included in the strictly defined list of trusted sources.
  • [COMMAND_EXECUTION] (MEDIUM): The Kubernetes DaemonSet manifest uses 'hostPath' volumes to mount '/var/log' and '/var/lib/docker/containers' from the underlying node, providing elevated access to host filesystem data.
  • [PROMPT_INJECTION] (LOW): The skill configures a log ingestion surface (Category 8) without boundary markers or sanitization. Ingestion points: '/var/log/*.log' and '/var/lib/docker/containers' via Promtail; Boundary markers: Absent; Capability inventory: Helm and Docker deployment commands; Sanitization: Absent. This creates a vulnerability where malicious log content could influence an agent processing the data.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 16, 2026, 01:20 PM