Skills
skills/jamie-bitflight/claude_skills/claude-session-data-schema-reference/Gen Agent Trust Hub

claude-session-data-schema-reference

Pass

Audited by Gen Agent Trust Hub on Mar 29, 2026

Risk Level: SAFEDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [DATA_EXFILTRATION]: The skill documents the structure of sensitive internal directories such as ~/.claude/projects/, ~/.claude/tasks/, and ~/.claude/teams/. These locations contain comprehensive session history, including previous user prompts and command results, which are sensitive in nature.
  • [PROMPT_INJECTION]: The skill defines a schema for ingesting untrusted historical data, which presents an attack surface for indirect prompt injection. 1. Ingestion points: Session logs located at ~/.claude/projects/**/*.jsonl. 2. Boundary markers: Absent; the documented schema does not suggest delimiters or 'ignore' instructions for log content. 3. Capability inventory: The skill is configured to use the Read tool for accessing history files. 4. Sanitization: Absent; no sanitization or escaping of parsed content is described.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 29, 2026, 08:42 AM