otel-logging-patterns
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious activity, obfuscation, or hardcoded secrets were detected. The skill follows established software engineering patterns for observability.
- [PROMPT_INJECTION]: The skill processes external data from Kafka messages and HTTP headers (e.g.,
request_id, message payloads) and includes them in logs. This represents a potential surface for indirect prompt injection if the logs are subsequently processed by an LLM-based agent. - Ingestion points: Kafka message processing in
KafkaConsumerAdapterand request header extraction inlogging_middleware(found inexamples/examples.md). - Boundary markers: Absent; external data is logged without specific delimiters to distinguish it from log structure.
- Capability inventory: The skill configuration allows the use of the
Bashtool. - Sanitization: No specific sanitization or escaping of external content is implemented before logging.
Audit Metadata