prometheus
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill provides legitimate and standard configuration templates for deploying Prometheus.
- [EXTERNAL_DOWNLOADS]: Fetches the official Prometheus Docker image (prom/prometheus:v2.48.0) from a well-known repository.
- [SAFE]: Uses standard Python libraries (prometheus_client, fastapi) for metrics instrumentation and exposure.
- [SAFE]: All command-line operations (curl) are directed at local endpoints for verification purposes.
- [SAFE]: No evidence of malicious obfuscation, credential exposure, or persistence mechanisms detected.
- [SAFE]: Indirect prompt injection surface analysis: 1. Ingestion points: Metrics scraped from defined microservice targets; 2. Boundary markers: None; 3. Capability inventory: Docker deployment and Python metrics instrumentation; 4. Sanitization: Not applicable to numeric time-series data.
Audit Metadata