monitoring-dashboard
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- Unverifiable Dependencies (MEDIUM): The scripts
scripts/setup-tensorboard.shandscripts/setup-wandb.shperform runtime installations of Python packagestensorboard,torch, andwandbusingpip. While these are standard libraries, installing packages from external registries is a potential supply chain risk. Severity is reduced to LOW for the final verdict as these are essential to the skill's primary purpose. - Dynamic Execution (LOW): The setup scripts generate several Python files (e.g.,
example_usage.py,example_basic.py) using shell heredocs and applychmod +xto make them executable. This follows the pattern of simple script generation from known templates. - Privilege Escalation (MEDIUM): The script
scripts/launch-monitoring.shusespkill -fto terminate processes based on a user-provided port number. While arguments are quoted, interacting with process management via user-controllable strings requires caution.
Audit Metadata