skills/jeremylongshore/claude-code-plugins-plus-skills/aggregating-performance-metrics/Gen Agent Trust Hub
aggregating-performance-metrics
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill architecture is susceptible to indirect prompt injection by processing data from external monitoring APIs.
- Ingestion points: Metric data is retrieved from Prometheus, StatsD, and CloudWatch APIs via
scripts/metrics_collection.py. - Boundary markers: No specific delimiters or instructions are used to separate ingested data from agent instructions.
- Capability inventory: The skill is granted
Bash,Write,Read, andGreptools inSKILL.md. - Sanitization: The skill includes
scripts/metrics_validation.pyto validate metrics against predefined schemas and thresholds.
Audit Metadata