thread-dump-analyzer
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION] (HIGH): Vulnerable to Indirect Prompt Injection (Category 8). The skill is designed to ingest and analyze thread dumps, which are untrusted external data. Because the skill is granted 'Bash' and 'Write' permissions, a malicious actor could embed instructions in a thread dump (e.g., in thread names) to execute arbitrary commands. Evidence: Ingestion points in thread dump analysis; Boundary markers are absent; Capability inventory includes Bash, Write, and Edit; Sanitization is absent.
- [COMMAND_EXECUTION] (MEDIUM): The skill explicitly requests 'Bash' tool access. While relevant for performance testing, this high-privilege capability escalates the impact of any prompt injection or data processing vulnerabilities.
Recommendations
- AI detected serious security threats
Audit Metadata