incident-responder
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to execute local scripts for system health diagnostics. Evidence: SKILL.md contains an execution protocol calling
python .agent/skills/incident-responder/scripts/health_check.py. - [PROMPT_INJECTION]: Indirect prompt injection surface identified. The skill is designed to process external observability data such as logs, traces, and metrics. * Ingestion points: External logs and metrics mentioned in sections 2 and 5 of SKILL.md. * Boundary markers: No specific delimiters or instructions to ignore embedded commands are present in the processing instructions. * Capability inventory: The agent possesses the capability to execute local shell commands and diagnostic scripts. * Sanitization: No sanitization or validation of the ingested log data or external metrics is described.
Audit Metadata