Observability Instrumentation
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: CRITICAL
Full Analysis
- Prompt Injection (SAFE): No attempts to override agent instructions or bypass safety filters were detected. The content is strictly instructional and follows professional standards.\n- Data Exposure & Exfiltration (SAFE): No hardcoded secrets, credentials, or sensitive file paths were found. The skill includes explicit security best practices, such as warning against logging sensitive data like passwords or tokens.\n- Unverifiable Dependencies (SAFE): The skill references reputable and industry-standard libraries (Go slog, Prometheus, and OpenTelemetry). No suspicious package installation commands were found.\n- Obfuscation (SAFE): No Base64, zero-width characters, homoglyphs, or other obfuscation techniques were detected in the text or code snippets.\n- False Positive (INFO): The automated scan alert regarding 'logger.Info' is a false positive. 'logger.Info' is a common method in Go's structured logging library (slog) and does not represent a malicious URL or destination.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata