Skills
skills/m1heng/just-cli-it/signoz-cli/Gen Agent Trust Hub

signoz-cli

Pass

Audited by Gen Agent Trust Hub on Mar 30, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of the @jcit/signoz package from the npm registry.
  • [COMMAND_EXECUTION]: The skill instructs the agent to execute shell commands using the signoz CLI, as well as system tools like security (macOS) and secret-tool (Linux) for credential management.
  • [DATA_EXFILTRATION]: The skill handles sensitive SigNoz API tokens (SIGNOZ_TOKEN) and interacts with user-defined SigNoz API endpoints to retrieve traces, logs, and metrics.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingest and processes untrusted data from SigNoz (logs and traces) which could contain malicious instructions.
  • Ingestion points: Data returned from signoz query commands (SKILL.md).
  • Boundary markers: No specific delimiters or instructions are provided to the agent to ignore embedded commands in the query results.
  • Capability inventory: The agent has the capability to execute shell commands (signoz) and read/write local files (-f flag).
  • Sanitization: No sanitization or validation of the observability data is mentioned before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 30, 2026, 02:29 PM