Skills
skills/github/gh-aw/otel-queries/Gen Agent Trust Hub

otel-queries

Pass

Audited by Gen Agent Trust Hub on May 13, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No security issues were detected. The skill performs legitimate telemetry analysis tasks using standard diagnostic tools.- [INDIRECT_PROMPT_INJECTION]: The skill contains a data ingestion surface through the processing of external telemetry traces. The potential risk is assessed as low due to the diagnostic nature of the skill and the use of safe command patterns.
  • Ingestion points: Reads trace data from /tmp/gh-aw/otel.jsonl, /tmp/gh-aw/copilot-otel.jsonl, and external OTLP backends (Grafana, Honeycomb, etc.).
  • Boundary markers: None explicitly defined in the instructions; the skill relies on the structured nature of JSONL/OTLP data.
  • Capability inventory: Limited to read-only file access and telemetry querying using jq and backend-specific tools.
  • Sanitization: Employs security best practices by using the --arg flag in jq examples to prevent shell injection from variable interpolation.
Audit Metadata
Risk Level
SAFE
Analyzed
May 13, 2026, 02:32 PM
Security Audit — agent-trust-hub — otel-queries