system-health-check
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The
scripts/check.shscript utilizes various system-level tools includingps,df,stat,ss,netstat, andpowershell.exeto gather system metrics and configuration details. These actions are consistent with the skill's stated goal of providing a comprehensive health scan.\n- [PROMPT_INJECTION]: The skill presents an attack surface for indirect prompt injection.\n - Ingestion points: The agent context receives raw output from commands that list user-influenced strings, such as process names via
psor directory listings vials.\n - Boundary markers: The script generates a formatted text report but lacks clear instruction-ignoring delimiters around gathered data.\n
- Capability inventory: The skill possesses the ability to execute shell commands and read system-wide configuration metadata.\n
- Sanitization: No sanitization or filtering of command output is performed to prevent embedded instructions in system strings from being interpreted as commands by the AI.\n- [SAFE]: The script accesses sensitive file paths like
~/.ssh/id_rsaand~/.aws/credentialssolely to check file permissions using thestatutility. No reading of file contents or network-based data exfiltration was detected.
Audit Metadata