volcengine-observability-cls
Pass
Audited by Gen Agent Trust Hub on Apr 6, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill facilitates the analysis of log data from Volcengine CLS, which constitutes a potential surface for indirect prompt injection where malicious content within logs could attempt to influence agent behavior. • Ingestion points: Log query results fetched from Volcengine CLS as referenced in
SKILL.md. • Boundary markers: No explicit delimiters or instructions to ignore embedded commands are defined in the execution checklist. • Capability inventory: Query execution, error aggregation, and incident diagnostics summarization (SKILL.md). • Sanitization: No filtering or sanitization of external log content is mentioned or implemented within the skill instructions. - [NO_CODE]: The skill package does not contain any executable scripts (e.g., .py, .js, .sh), consisting solely of markdown instructions and YAML configuration files.
Audit Metadata