apify-debug-bundle
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches Actor run metadata, execution logs, and dataset samples from the official Apify API infrastructure at api.apify.com. These operations are authenticated using the user's provided API token and are consistent with the skill's troubleshooting purpose.
- [COMMAND_EXECUTION]: Utilizes common system utilities including curl for API communication, jq for parsing JSON data, and tar for creating the compressed debug archive. It also uses npm and node commands to document the local environment configuration.
- [PROMPT_INJECTION]: The skill presents an attack surface for indirect prompt injection as it reads and prints portions of Actor logs that originate from external execution environments.
- Ingestion points: Retrieves log content and dataset items from the Apify API via curl in SKILL.md.
- Boundary markers: No explicit boundary markers or instructions to ignore instructions within the data are used when logs are printed to the console.
- Capability inventory: The skill is authorized to use Bash, curl, npm, node, tar, and apify tools.
- Sanitization: The skill includes a sed-based redaction step for local .env files to prevent credential leakage, though it does not sanitize the contents of the retrieved logs themselves.
- [SAFE]: The skill follows security best practices by attempting to redact sensitive environment variables before bundling and by directing all network traffic to the official vendor API. The behaviors are transparent and well-aligned with the documented purpose of preparing support evidence.
Audit Metadata