Skills
skills/melodic-software/claude-code-plugins/audit-log/Gen Agent Trust Hub

audit-log

Pass

Audited by Gen Agent Trust Hub on Mar 5, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it reads and displays content from external files located in the repository.
  • Ingestion points: The agent reads audit log data from markdown files located in the .claude/audit/ directory.
  • Boundary markers: No explicit boundary markers or safety instructions are provided to the agent to distinguish between its own instructions and the content of the logs.
  • Capability inventory: The skill allows the use of powerful tools including Bash, Read, Grep, and Glob to process the repository data.
  • Sanitization: The skill does not implement any validation, sanitization, or filtering of the content retrieved from the audit log files.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 5, 2026, 04:21 AM