skills/seqis/openclaw-skills-converted-from-claude-code/agent-linux-sysadmin-specialist/Gen Agent Trust Hub
agent-linux-sysadmin-specialist
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill defines a variety of shell commands for system administration, including service management via systemctl, network diagnostics using ss and nc, and package management via apt. These commands are necessary for the skill's intended purpose as a system administrator specialist.
- [EXTERNAL_DOWNLOADS]: The skill uses apt update and apt install, which download package information and software from external repositories. This is standard system behavior for the defined role.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface due to its data-processing instructions.
- Ingestion points: The agent is instructed to read and analyze system logs using journalctl, which contains untrusted external data.
- Boundary markers: The instructions lack delimiters or warnings to treat log entries as untrusted or to ignore embedded instructions.
- Capability inventory: The agent has high-privilege capabilities including the ability to run systemd commands and install packages via the Bash tool.
- Sanitization: No sanitization or validation of log content is specified before the agent performs analysis.
Audit Metadata