Skills
skills/lensesio/agentic-engineering-for-apache-kafka/kafka-perf-review/Gen Agent Trust Hub

kafka-perf-review

Pass

Audited by Gen Agent Trust Hub on May 15, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill performs legitimate analysis of Kafka configurations using established tools.
  • The use of mcp__Lenses__* tools is consistent with the skill's stated purpose and originates from the established 'lensesio' vendor ecosystem.
  • Codebase scanning via Grep and Read is scoped to identifying specific Kafka property keys as defined in the provided reference files.
  • [PROMPT_INJECTION]: The skill has an attack surface for indirect prompt injection because it reads untrusted data from the codebase and external cluster configurations.
  • Ingestion points: Grep and Read tools are used to scan files in the src/ directory, and various MCP tools fetch data from a live Kafka cluster.
  • Boundary markers: There are no explicit delimiters or instructions for the agent to ignore embedded commands within the data it reads.
  • Capability inventory: The agent has access to Bash, Read, Grep, and cluster management tools (mcp__Lenses__*).
  • Sanitization: No sanitization or validation is performed on the ingested content before it is processed by the agent. This represents a standard risk for auditing tools and is considered low impact here.
Audit Metadata
Risk Level
SAFE
Analyzed
May 15, 2026, 12:43 PM