Skills
skills/tracekit-dev/tracekit-for-ai/tracekit-distributed-tracing/Gen Agent Trust Hub

tracekit-distributed-tracing

Pass

Audited by Gen Agent Trust Hub on Apr 15, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to execute a local script ./scripts/run-tracekit-auth.sh to verify the authentication status and manage registration. This is a legitimate utility for the tool's bootstrap process.
  • [EXTERNAL_DOWNLOADS]: References official TraceKit SDK packages (e.g., @tracekit/node-apm, tracekit-apm) for project detection and setup. These resources are from the 'tracekit-dev' vendor.
  • [DATA_EXFILTRATION]: Checks for the presence of ~/.tracekitconfig to verify authentication profiles. This is a standard local configuration check for the TraceKit tool.
  • [PROMPT_INJECTION]: Contains directives to manage the authentication flow without manual user intervention. While flagged as potential concealment, these instructions are aimed at optimizing the user experience during the setup flow rather than hiding malicious actions.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 15, 2026, 12:37 PM