Skills
skills/jwmossmoz/agent-skills/daily-log/Gen Agent Trust Hub

daily-log

Pass

Audited by Gen Agent Trust Hub on May 11, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses a bash script to search for and filter session history files based on modification dates.
  • Evidence: Bash snippet in SKILL.md using find, stat, and sort on local directories.
  • [DATA_EXFILTRATION]: The skill accesses sensitive local data by reading session history files which may contain proprietary code, private conversations, or credentials mistakenly included in past prompts.
  • Evidence: Accesses files in ~/.claude/projects and ~/.codex/sessions.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted content from past session logs without isolation or sanitization.
  • Ingestion points: Session history files (.jsonl) located in ~/.claude/projects and ~/.codex/sessions (identified in SKILL.md).
  • Boundary markers: Absent. There are no delimiters or instructions provided to the subagents to ignore potentially malicious instructions embedded within the session content.
  • Capability inventory: The skill primarily performs local file reads, summarization, and writing the final log to ~/moz_artifacts/. No network operations or dangerous dynamic executions are performed on the ingested data.
  • Sanitization: Absent. The content of the sessions is passed directly to subagents for summarization without filtering.
Audit Metadata
Risk Level
SAFE
Analyzed
May 11, 2026, 02:20 PM
Security Audit — agent-trust-hub — daily-log