journal
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
ibmiCLI to execute SQL queries on IBM i systems. This is the core functionality for retrieving journal and receiver metadata. - [DATA_EXPOSURE]: The skill accesses sensitive system data, including audit journals (authority failures, system changes, object creation). The connection configuration in
tools/journal.yamlincludesignore-unauthorized: true, which disables SSL certificate verification, potentially increasing risk in untrusted network environments. - [INDIRECT_PROMPT_INJECTION]: The skill ingests untrusted data from IBM i journals and audit logs. While this creates a theoretical surface for indirect prompt injection via crafted log entries, it is a low-risk factor inherent to the skill's diagnostic purpose.
Audit Metadata