Skills
skills/oliver-kriska/claude-elixir-phoenix/session-trends/Gen Agent Trust Hub

session-trends

Pass

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses python3 to execute a local script (.claude/skills/session-scan/references/compute-metrics.py) and several Python one-liners via python3 -c to aggregate data from local JSONL files.
  • [DATA_EXPOSURE_&_EXFILTRATION]: The skill reads from .claude/session-metrics/metrics.jsonl and writes to .claude/session-metrics/trends.json. All operations are restricted to the local filesystem within the .claude directory, with no network requests detected.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted data from session logs (metrics.jsonl) which could potentially contain malicious content from previous interactions.
  • Ingestion points: Reads .claude/session-metrics/metrics.jsonl (SKILL.md, Step 2).
  • Boundary markers: None explicitly defined in the aggregation scripts.
  • Capability inventory: Executes local Python scripts and bash commands (grep, sort, uniq) to process the data.
  • Sanitization: None observed; the skill performs statistical aggregation (averages, counts) which naturally limits the impact of most injection attempts.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 10, 2026, 11:41 PM