Skills
skills/cline/skills/session-report/Gen Agent Trust Hub

session-report

Pass

Audited by Gen Agent Trust Hub on Jun 19, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes a bundled script (analyze-sessions.mjs) and shell commands (node, cp, date) to parse session history and generate report files in the local environment.
  • [PROMPT_INJECTION]: The skill processes untrusted historical session transcripts from ~/.claude/projects, which introduces an indirect prompt injection surface.
  • Ingestion points: Transcript files (.jsonl) are parsed into a JSON report for agent skimming.
  • Boundary markers: No explicit delimiters or instructions to ignore embedded commands are used when the agent reads the session data.
  • Capability inventory: The agent can execute shell commands and write files, providing a path for malicious instructions in past logs to influence the current system.
  • Sanitization: The tool performs no sanitization or filtering of historical prompt text before presenting it to the agent for analysis.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 19, 2026, 12:28 PM
Security Audit — agent-trust-hub — session-report