Skills
skills/thinkfleetai/thinkfleet-engine/session-logs/Gen Agent Trust Hub

session-logs

Pass

Audited by Gen Agent Trust Hub on Mar 1, 2026

Risk Level: SAFEDATA_EXFILTRATIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [DATA_EXFILTRATION]: The skill accesses sensitive conversation history files located at ~/.thinkfleetbot/agents/<agentId>/sessions/. This is the core functionality of the skill; no external network transmission of this data was detected.\n- [COMMAND_EXECUTION]: Provides and executes shell command templates using jq, rg, awk, and other utilities to process local session data.\n- [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection from historical logs.\n
  • Ingestion points: ~/.thinkfleetbot/agents/<agentId>/sessions/*.jsonl (File access via jq/rg).\n
  • Boundary markers: Absent; data is extracted and potentially returned to the agent context without delimiters.\n
  • Capability inventory: Shell execution of jq, rg, awk, sort, head, and ls.\n
  • Sanitization: Absent; processed log content is not sanitized before being re-introduced to the prompt context.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 1, 2026, 05:15 AM