monitoring-logging
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: CRITICALCOMMAND_EXECUTIONCREDENTIALS_UNSAFEEXTERNAL_DOWNLOADS
Full Analysis
- Privilege Escalation (MEDIUM): The 'cadvisor' service in 'docker-compose.monitoring.yml' uses 'privileged: true', granting the container elevated access to the host kernel and devices. This is a common requirement for container monitoring but increases the potential impact of a container escape.
- Credentials Unsafe (LOW): The Grafana service is configured with default admin credentials ('admin'/'admin') in the docker-compose file.
- Indirect Prompt Injection (LOW): The skill defines a surface for processing untrusted metrics data from the /metrics endpoint. Ingestion points: templates/README.md (application metrics endpoints). Boundary markers: Absent. Capability inventory: Metrics visualization and service reloading. Sanitization: Not specified in templates.
- Command Execution (LOW): The README.md provides several shell commands for file management, Docker operations, and service management using curl.
- External Downloads (SAFE): The configuration pulls official images from trusted repositories including Prometheus, Grafana, and Google Container Registry (gcr.io).
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata