benchmarking
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHCREDENTIALS_UNSAFECOMMAND_EXECUTION
Full Analysis
- [CREDENTIALS_UNSAFE] (HIGH): Hardcoded credential placeholders used in CLI examples. Evidence: The MySQL benchmark sections in
SKILL.mdinclude--mysql-password=pass. Providing passwords as command-line arguments is a security risk as they appear in plaintext in command history files and system process listings. - [COMMAND_EXECUTION] (MEDIUM): Instructions for software installation and system-intensive operations. Evidence:
SKILL.mdcontains commands to install software viaaptandyum, and performs operations likesysbench fileio --file-total-size=10G preparewhich can have significant performance impacts if run on sensitive environments.
Recommendations
- AI detected serious security threats
Audit Metadata