mdadm
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides instructions for executing administrative disk management tasks using the
mdadmutility. These operations include creating arrays (--create), stopping arrays (--stop), and marking disks as failed (--fail), all of which require root privileges and can have destructive effects on system storage.\n- [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection (Category 8) by instructing the agent to ingest and act upon data from system status files and logs.\n - Ingestion points: The skill reads from
/proc/mdstat,journalctl, anddmesgto assess array health.\n - Boundary markers: No explicit delimiters or instructions to disregard embedded commands in ingested data are defined.\n
- Capability inventory: The skill possesses high-privilege capabilities, including the ability to modify
/etc/mdadm/mdadm.conf, regenerate initramfs, and perform disk-level management operations.\n - Sanitization: There are no mechanisms specified to sanitize or validate the content of system logs or command output before processing.
Audit Metadata