monitoring-observability
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface. The skill is designed to ingest and process untrusted external data described as 'intake packets,' which can include architecture notes, telemetry configurations, and incident summaries. \n
- Ingestion points: Processed in Step 1 and Step 2 of
SKILL.md. \n - Boundary markers: Absent. No explicit instruction to wrap external content in delimiters or treat it as data only. \n
- Capability inventory:
Bash,Read,Write,Edit,Glob, andGreptools are available. \n - Sanitization: Absent. No mention of sanitizing or validating the content of the intake packets before processing. \n- [SAFE]: External references. The skill includes links to official documentation from well-known and trusted organizations including Google SRE, OpenTelemetry, Prometheus, and Grafana.
Audit Metadata