Skills
skills/posthog/skills/error-tracking-ruby-on-rails/Gen Agent Trust Hub

error-tracking-ruby-on-rails

Pass

Audited by Gen Agent Trust Hub on Mar 28, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of the official posthog-ruby and posthog-rails gems from the standard RubyGems registry.
  • [COMMAND_EXECUTION]: The integration process involve executing shell commands such as bundle install and rails generate posthog:install to initialize the vendor libraries.
  • [SAFE]: Documentation provides secure configuration advice, explicitly instructing users to store API keys in environment variables or Rails credentials rather than hardcoding them.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its core functionality of ingesting external data from error events.
  • Ingestion points: The skill ingests unvalidated exception messages, values, and stack traces from the Rails environment as documented in references/ruby-on-rails.md.
  • Boundary markers: There are no markers or specific instructions to the agent to distinguish between captured exception data and instructions.
  • Capability inventory: The skill allows for the execution of development tools and communication with the PostHog ingestion API.
  • Sanitization: No procedures for sanitizing or escaping the content of captured exceptions are mentioned in the guidelines.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 28, 2026, 07:14 AM