input-configurations
Pass
Audited by Gen Agent Trust Hub on May 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized access attempts were found. The skill is a collection of reference documentation for Elastic integrations.
- [CREDENTIALS_UNSAFE]: The documentation actively promotes secure credential management. It includes specific validation rules across multiple guides stating that hardcoded credentials are a critical security issue and requiring the use of variables with
type: password. - [EXTERNAL_DOWNLOADS]: All external links point to official documentation at
elastic.coor official GitHub repositories, which are recognized as trusted vendor sources. - [COMMAND_EXECUTION]: No shell command execution, unauthorized privilege escalation, or persistence mechanisms were detected. The skill uses standard templating languages (Handlebars and Go templates) as intended for the Elastic ecosystem.
- [PROMPT_INJECTION]: No evidence of prompt injection or bypass instructions was detected. While the skill documents tools for processing external data (e.g., webhooks), it emphasizes the use of boundary markers and sanitization methods.
Audit Metadata