network-diagnostics
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes multiple shell commands to gather system information, including
route,ping,dig,scutil,networksetup,ifconfig,lsof, andtraceroute. While the skill's instructions claim a read-only intent, these tools are used to extract detailed network architecture and activity. - [DATA_EXPOSURE]: The skill explicitly collects and records sensitive identifiers such as MAC addresses (
networksetup -listallhardwareports) and a list of all established TCP connections and listening ports (lsof). - [INDIRECT_PROMPT_INJECTION]: The skill processes output from numerous external network utilities (e.g.,
dig,scutil,ifconfig). While it primarily uses this data for status reporting, the ingestion of unvalidated command output into a JSON report represents a surface for potential schema confusion or downstream processing issues.
Audit Metadata