Linux Production Shell Scripts
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides numerous templates for high-privilege system operations, such as user creation (
useradd), package installation (apt-get), service management (systemctl), and crontab manipulation. - [COMMAND_EXECUTION]: Includes a remote execution template using SSH (
ssh "$remote_server" "bash -s" < "$remote_script") for running local scripts on remote hosts. - [PROMPT_INJECTION]: Contains an indirect prompt injection surface due to scripts that ingest and process external data such as system logs and web server access logs.
- Ingestion points: Reads from
/var/log/syslogand/var/log/apache2/access.loginsub-skills/phase-5-log-analysis-scripts.md. - Boundary markers: None present in the templates to distinguish log data from instructions.
- Capability inventory: High-privilege execution capabilities (sudo, ssh, crontab) are present across the skill scripts.
- Sanitization: None; the scripts use standard shell utilities (awk, grep) to process inputs without explicit sanitization or escaping of the ingested data.
Audit Metadata