network-diagnostics

Pass

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes multiple shell commands to gather system information, including route, ping, dig, scutil, networksetup, ifconfig, lsof, and traceroute. While the skill's instructions claim a read-only intent, these tools are used to extract detailed network architecture and activity.
  • [DATA_EXPOSURE]: The skill explicitly collects and records sensitive identifiers such as MAC addresses (networksetup -listallhardwareports) and a list of all established TCP connections and listening ports (lsof).
  • [INDIRECT_PROMPT_INJECTION]: The skill processes output from numerous external network utilities (e.g., dig, scutil, ifconfig). While it primarily uses this data for status reporting, the ingestion of unvalidated command output into a JSON report represents a surface for potential schema confusion or downstream processing issues.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 17, 2026, 11:37 AM
Security Audit — agent-trust-hub — network-diagnostics