Skills
skills/ethpandaops/mcp/query/Gen Agent Trust Hub

query

Pass

Audited by Gen Agent Trust Hub on Mar 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [COMMAND_EXECUTION]: The skill is designed to execute Python code and shell commands via the panda CLI tool (panda execute) and MCP server (execute_python). This capability is the primary mechanism for data analysis.
  • [DATA_EXFILTRATION]: Uses storage.upload() to save and share visualization outputs to an external storage service. This is a documented feature for providing users with shareable URLs for charts and analysis.
  • [PROMPT_INJECTION]: The skill processes data from external sources which could potentially contain indirect prompt injections. Ingestion points: ClickHouse, Prometheus, Loki, and Dora explorer APIs (SKILL.md). Boundary markers: None identified. Capability inventory: Arbitrary Python execution via panda CLI and MCP tools (SKILL.md). Sanitization: No explicit sanitization or validation of data retrieved from external sources before processing is described.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 17, 2026, 11:08 PM
Security Audit — agent-trust-hub — query