trace-task
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes
cmux-team trace-task <task-id>to list session identifiers and file paths. - [SAFE]: The skill reads task interaction logs from
~/.claude/projects/. This access is necessary for the intended purpose of auditing session history and does not involve data exfiltration or credential access. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes logs containing historical agent interactions and tool outputs that may contain instructions.
- Ingestion points: JSONL log files at
~/.claude/projects/. - Boundary markers: None specified.
- Capability inventory: Shell command execution via
cmux-team. - Sanitization: No content validation is performed on log data.
Audit Metadata