gcp-logs
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
gcloudCLI andjqutility to retrieve and process log data. These are standard, well-known tools for Google Cloud management.- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests untrusted data from GCP logs into the agent's context. - Ingestion points: Untrusted log data enters the agent's context through the output of
gcloud logging read. - Boundary markers: The provided templates do not use specific delimiters or include instructions for the agent to ignore potential commands embedded in the log content.
- Capability inventory: The skill allows for the execution of shell commands (
gcloud,jq) which could be influenced by injected instructions. - Sanitization: There is no evidence of sanitization or filtering of log payloads to remove potentially malicious instruction strings before they are processed by the agent.
Audit Metadata