elasticsearch-esql
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [REMOTE_CODE_EXECUTION]: The environment setup guide mentions a command to install a local development environment via a piped shell script from the vendor's official domain (elastic.co). This is a standard convenience feature for developers and originates from a trusted source.
- [EXTERNAL_DOWNLOADS]: The skill documentation references official setup scripts and resources hosted on the vendor's verified infrastructure.
- [COMMAND_EXECUTION]: The skill uses a provided Node.js script to execute queries against configured Elasticsearch instances. The script uses the official @elastic/elasticsearch client and does not perform any suspicious system operations.
- [DATA_EXFILTRATION]: The skill is designed to query and retrieve data from Elasticsearch indices. While this involves processing potentially sensitive logs or metrics, this behavior is the primary intended purpose of the skill and is performed over authenticated connections to the user's own cluster.
Audit Metadata