debugging
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill includes a bash script (
scripts/collect-diagnostics.sh) that executes standard system commands to gather environment metadata, such asuname,df,free, and version checks for common runtimes (Node.js, Python, Ruby, etc.). These operations are necessary for the skill's primary purpose of troubleshooting and root-cause analysis. - [DATA_EXFILTRATION]: The diagnostic script collects local system information including the current user (
whoami), the working directory (pwd), and Git metadata (git remote get-url origin). This information is output to stdout or a local file specified by the user; there is no logic present to transmit this data over the network. - [SAFE]: The skill demonstrates safe handling of environment data by explicitly iterating over a whitelist of non-sensitive environment variables (e.g.,
NODE_ENV,APP_ENV,CI) rather than dumping all environment variables, which effectively prevents the accidental exposure of API keys or other credentials stored in the environment.
Audit Metadata