quickwit-log-search
Warn
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: MEDIUMPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- Prompt Injection (MEDIUM): High risk of Indirect Prompt Injection (Category 8). The skill is designed to ingest and analyze external log data, which is an untrusted source.
- Ingestion points: External log data retrieved via Quickwit search results as described in SKILL.md.
- Boundary markers: Absent. There are no instructions to the agent on how to distinguish between log content and operational instructions.
- Capability inventory: The skill performs network requests to the Quickwit API and is used for critical decision-making such as 'Incident investigation' and 'Security log auditing'.
- Sanitization: Absent. The skill does not define any input validation or sanitization for the log data being processed.
- Command Execution (LOW): The documentation contains multiple shell command examples using
curl,jq, and the 1Password CLI (op). While intended for human troubleshooting, an agent with terminal capabilities might attempt to execute these commands, potentially leading to local network probing or unauthorized credential access.
Audit Metadata