ln-034-vps-environment-diagnostics
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses Bash and specialized SSH tools (mcp__hex-ssh) to perform remote system management, including systemd operations, tmux management, and directory creation on a VPS.
- [PROMPT_INJECTION]: The skill is subject to indirect prompt injection (Category 8) due to the ingestion of untrusted data from remote environments.
- Ingestion points: The skill reads system logs (agent-update.timer), project directory states, and service outputs into the agent context.
- Boundary markers: Absent; there are no specified delimiters or instructions to ignore embedded commands within the logs or files being inspected.
- Capability inventory: The skill possesses high-privilege capabilities including remote shell execution (mcp__hex-ssh__remote-ssh) and file modification (mcp__hex-ssh__ssh-edit-block).
- Sanitization: Absent; the instructions do not define a process for sanitizing log content or system output before the agent processes it for decision-making.
Audit Metadata