Skills
skills/elastic/cursor-plugins/elasticsearch-security-troubleshooting/Gen Agent Trust Hub

elasticsearch-security-troubleshooting

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses curl to query Elasticsearch APIs (e.g., _authenticate, _has_privileges, _license) and openssl to inspect TLS certificates. These commands are executed against user-provided URLs and are necessary for the primary purpose of troubleshooting the cluster.
  • [SAFE]: While the skill processes data returned from cluster APIs, which represents a surface for indirect prompt injection, this is inherent to the troubleshooting use case. The skill provides clear guidelines for safe diagnostics and includes warnings against insecure practices like skipping TLS verification in production.
  • Ingestion points: JSON responses from Elasticsearch diagnostic APIs.
  • Boundary markers: Absent.
  • Capability inventory: Shell execution of curl and openssl diagnostic tools.
  • Sanitization: Absent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 09:32 AM