setup-observability
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [DATA_EXFILTRATION]: The skill instructs the agent to search for and read environment files (e.g., .env) and configuration files during the project assessment phase. This access to sensitive files constitutes a data exposure risk, although it is intended for determining the current configuration state.\n- [PROMPT_INJECTION]: The skill analyzes project source code and configuration files, which are untrusted inputs. This creates a surface for indirect prompt injection that could influence the agent's behavior during the setup and implementation process.\n
- Ingestion points: Project scanning in Phase 1 (SKILL.md) using Grep and Read tools on local files.\n
- Boundary markers: None identified; scanned project content is processed directly without delimiters or explicit instructions to ignore embedded commands.\n
- Capability inventory: The agent has access to Write, Edit, and Bash tools to perform instrumentation and modify project files as described in Phase 3 (SKILL.md).\n
- Sanitization: There is no explicit sanitization or validation of the framework names or configuration values extracted from the project files.
Audit Metadata