ln-627-observability-auditor
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted codebase data which can contain malicious instructions. Ingestion points: Audited files via Grep and Read tools. Boundary markers: None specified to distinguish audited content from instructions. Capability inventory: Bash, Read, Write, and Glob tools. Sanitization: No explicit sanitization of external content before report generation.
- [EXTERNAL_DOWNLOADS]: The documentation file diagram.html fetches the Mermaid library from the JSDelivr CDN (https://cdn.jsdelivr.net/npm/mermaid@11/dist/mermaid.min.js) for rendering diagrams. This is a well-known service and the reference is for documentation purposes.
Audit Metadata