os-scripting
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill documentation includes numerous system diagnostic and administrative commands (e.g., ps, netstat, lsof, strace, systemctl). It also covers creating persistence through automation tools like crontab and systemd timers, which are standard for the system administration use case.- [EXTERNAL_DOWNLOADS]: The skill references the installation of the ShellCheck utility via well-known system package managers (apt and Homebrew).- [PROMPT_INJECTION]: The workflow involves analyzing external scripts and log files, creating an indirect prompt injection surface.
- Ingestion points: Processes external shell scripts (script.sh) and system logs (e.g., /var/log/syslog).
- Boundary markers: No specific boundary markers or 'ignore' instructions are provided to delimit external data from agent instructions.
- Capability inventory: The skill possesses extensive system capabilities including subprocess execution, privilege escalation (sudo), and persistence (cron).
- Sanitization: No explicit sanitization or validation of input files is performed prior to analysis.
Audit Metadata