Falco Runtime Security Monitor
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill is designed to process untrusted data streams including Kubernetes audit logs and container runtime syscall events. This functionality introduces a surface for indirect prompt injection, where an attacker could place malicious instructions inside logs or event data that the agent might interpret as commands.
- Ingestion points: Kubernetes audit logs and eBPF-based syscall monitoring.
- Boundary markers: No delimiters or ignore-instructions warnings are specified in the markdown.
- Capability inventory: The skill has the ability to terminate pods and enforce network policies via CNI plugins.
- Sanitization: Documentation does not specify filtering or escaping mechanisms for the processed log data.
- [EXTERNAL_DOWNLOADS]: The skill provides installation instructions using the npx utility to fetch packages from the author's own repository at agentskillexchange/skills. This is a standard procedure for this vendor.
Audit Metadata