skills/mukul975/anthropic-cybersecurity-skills/building-soc-metrics-and-kpi-tracking/Gen Agent Trust Hub
building-soc-metrics-and-kpi-tracking
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The agent is vulnerable to indirect prompt injection because it processes untrusted data from an external SIEM without proper sanitization.\n
- Ingestion points: Data is collected from Splunk ES notable events and incident records via the
scripts/agent.pyscript.\n - Boundary markers: None. The script interpolates data directly into the generated report strings without using delimiters or instructions to ignore embedded commands.\n
- Capability inventory: The script performs network operations (Splunk REST API) and writes results to the local filesystem.\n
- Sanitization: There is no evidence of sanitization or validation of the content retrieved from the SIEM before it is used to generate reports.\n- [SAFE]: The Python script
scripts/agent.pydisables SSL certificate verification by settingverify=Falsein its HTTP requests to the Splunk API. While this is a common practice in internal environments with self-signed certificates, it is a security best practice violation that could allow Man-in-the-Middle (MITM) attacks if the agent is used on insecure networks.
Audit Metadata