Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/juicebox-debug-bundle/Gen Agent Trust Hub

juicebox-debug-bundle

Pass

Audited by Gen Agent Trust Hub on Mar 12, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: Executes standard system commands including node -v, npm -v, and uname -a to collect environment metadata for inclusion in the diagnostic bundle.
  • [EXTERNAL_DOWNLOADS]: Connects to official Juicebox API endpoints (api.juicebox.ai) to perform health checks and verify API key authentication status.
  • [DATA_EXFILTRATION]: Reads local application logs (logs/app.log) to extract relevant error messages. The extracted data is saved to local files (debug-bundle.txt and debug-bundle.json) for the user to review and manually submit to support; no automated exfiltration to remote servers was found.
  • [PROMPT_INJECTION]: The skill ingests untrusted data from local log files, creating a potential surface for indirect prompt injection.
  • Ingestion points: Reads from logs/app.log in SKILL.md.
  • Boundary markers: None implemented for the ingested log data within the generated bundle files.
  • Capability inventory: The skill is granted Read, Grep, and Bash(curl:*) permissions, but it does not execute or evaluate the ingested log content.
  • Sanitization: Filters logs for specific keywords ("juicebox") and recent timestamps, but does not perform sanitization or escaping of the log message content itself.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 12, 2026, 05:47 PM