Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/instantly-debug-bundle/Gen Agent Trust Hub

instantly-debug-bundle

Pass

Audited by Gen Agent Trust Hub on Mar 12, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: Uses Bash tools to gather environment versions and package diagnostic data into a compressed archive.
  • [DATA_EXFILTRATION]: Accesses the local .env configuration file and npm logs to assist in debugging. The skill includes a redaction step using sed to mask potential credentials in the configuration file before inclusion in the bundle.
  • [PROMPT_INJECTION]: Potential for indirect prompt injection via the ingestion of external log files. Ingestion points: ~/.npm/_logs/*.log (SKILL.md). Boundary markers: Absent. Capability inventory: Bash (grep, curl, tar), Grep. Sanitization: Redaction applied to .env values, but no content filtering for collected log lines.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 12, 2026, 06:48 PM