skills/mukul975/anthropic-cybersecurity-skills/correlating-security-events-in-qradar/Gen Agent Trust Hub
correlating-security-events-in-qradar
Pass
Audited by Gen Agent Trust Hub on Apr 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted event data from IBM QRadar which could contain malicious instructions designed to influence the agent's behavior.
- Ingestion points: The
scripts/agent.pyscript retrieves event logs, flow data, and offense details via the QRadar REST API. - Boundary markers: Absent. There are no explicit delimiters or system instructions to ignore embedded commands within the ingested log content.
- Capability inventory: The
scripts/agent.pyscript has the capability to perform network operations (HTTP POST) to modify SIEM data, including adding investigation notes, closing offenses, and updating reference sets. - Sanitization: Absent. Data retrieved from the API is processed and returned to the agent context without validation or sanitization.
- [SAFE]: The
scripts/agent.pyagent disables SSL verification by default (ssl.CERT_NONE), which is a security best practice violation. This configuration makes the connection vulnerable to man-in-the-middle attacks but is common in internal environments and does not indicate malicious intent.
Audit Metadata