monitoring-expert
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: CRITICAL
Full Analysis
- General Security (SAFE): The skill provides boilerplate code for observability. It correctly uses environment variables for sensitive configurations like Sentry DSNs.
- False Positive Analysis (SAFE): The security alert flagging 'logger.info' as a malicious URL is an error from the automated scanner. In the provided code,
logger.infois a method call from the Pino logging library, not a web address or network destination. - Dependencies (SAFE): The skill references reputable Node.js packages (Pino, Sentry, Prometheus client) used for production monitoring. No suspicious or unversioned external scripts are downloaded.
- Command Execution (SAFE): The debug commands provided (journalctl, htop, netstat) are standard administrative tools for system diagnostics and do not include any obfuscated or destructive flags.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata