Skills
skills/thinkfleetai/thinkfleet-engine/jenkins/Gen Agent Trust Hub

jenkins

Pass

Audited by Gen Agent Trust Hub on Mar 1, 2026

Risk Level: SAFECOMMAND_EXECUTIONCREDENTIALS_UNSAFEDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: Employs curl to interact with the Jenkins API and jq to process JSON data.
  • [CREDENTIALS_UNSAFE]: Uses environment variables for authentication. While standard, users must ensure the provided JENKINS_TOKEN has the least privilege necessary.
  • [DATA_EXFILTRATION]: Performs network requests to the target Jenkins server. No evidence of unauthorized data transfer to third-party domains.
  • [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface. Ingestion points: Extracts data from build logs via the /consoleText endpoint. Boundary markers: None; output is presented to the agent without isolation. Capability inventory: Includes the ability to trigger build actions and query job details. Sanitization: No filtering is applied to the retrieved content.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 1, 2026, 05:14 AM