Skills
skills/lensesio/agentic-engineering-for-apache-kafka/kafka-consumer-lag/Gen Agent Trust Hub

kafka-consumer-lag

Pass

Audited by Gen Agent Trust Hub on May 15, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through the ingestion of untrusted data from Kafka topics.
  • Ingestion points: The mcp__Lenses__execute_sql tool is used in SKILL.md (Step 4) to sample recent messages from Kafka topics.
  • Boundary markers: The skill does not define boundary markers or provide instructions to the agent to ignore any potential commands embedded within the fetched message data.
  • Capability inventory: The skill environment has access to potentially powerful tools such as Bash, Read, Grep, and Glob as listed in the allowed-tools section of SKILL.md.
  • Sanitization: There is no logic or instruction provided to sanitize, escape, or validate the content of the messages sampled from the database before they are processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
May 15, 2026, 12:43 PM