log-analysis
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- DATA_EXPOSURE (LOW): The skill provides commands to access sensitive system logs such as
/var/log/auth.logand system configuration files like/etc/passwd. While these contain sensitive information, their access is consistent with the primary purpose of a log analysis skill. - EXTERNAL_DOWNLOADS (SAFE): Includes instructions to install the
goaccessutility using the system's package manager (apt install). This is a trusted source for software installation. - INDIRECT_PROMPT_INJECTION (LOW): The skill is designed to ingest and process untrusted external data (server logs).
- Ingestion points: Commands read from
/var/log/nginx/access.log,/var/log/app.log, and other system logs. - Boundary markers: None present in the provided shell snippets.
- Capability inventory: Includes text processing (awk, sed), system package installation (apt), and log rotation configuration.
- Sanitization: No explicit sanitization of log content is performed. An attacker could potentially embed malicious instructions in log entries (e.g., via User-Agent strings) that might be interpreted by an AI agent processing the output.
- COMMAND_EXECUTION (SAFE): Uses standard, non-obfuscated shell commands for text manipulation and system administration tasks.
Audit Metadata