cisco-uc-engineer
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill extensively uses a suite of specialized CLI tools (cisco-axl, cisco-dime, cisco-perfmon, cisco-risport, cisco-support, and audiocodes-cli) to manage UC infrastructure. It executes shell commands to verify tool availability, check active cluster configurations, and perform administrative tasks.
- [EXTERNAL_DOWNLOADS]: The skill facilitates the download of logs, SIP traces, and configuration backups from remote Unified Communications servers (CUCM and AudioCodes SBCs) to the local environment for analysis.
- [PROMPT_INJECTION]: The skill demonstrates an attack surface for indirect prompt injection (Category 8) as it ingests and processes untrusted data from external infrastructure.
- Ingestion points: Processes syslogs, SIP traces, and audit logs via cisco-dime, and retrieves bug/PSIRT data via cisco-support.
- Boundary markers: Absent; the skill does not define specific delimiters for separating ingested log content from agent instructions.
- Capability inventory: Possesses write/provisioning capabilities through cisco-axl and file-write capabilities via cisco-dime log downloads.
- Sanitization: Absent; commands rely on raw outputs from external tools for troubleshooting and decision-making.
Audit Metadata