fix-logs
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to modify project configuration files (such as
package.jsonorpyproject.toml) to redirect output and error streams to a locallogs.txtfile. It subsequently executes shell commands to trigger the application and capture these logs. - [PROMPT_INJECTION]: The skill uses the
$ARGUMENTSplaceholder to receive the issue description from the user. While this is a standard feature, it represents an entry point for untrusted data that the agent is then instructed to act upon. - [DATA_EXFILTRATION]: The skill accesses local project logs and source code files. These operations are restricted to the local environment, with analysis results written to a local workspace directory. No network-based exfiltration patterns were observed.
Audit Metadata