code-oss-logs
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- Local File System Access: The skill provides procedures to locate and read log files within the user's home directory (e.g.,
~/.vscode-oss-dev/logs/). This is standard behavior for a debugging tool and is used to help investigate application behavior. - Command Execution: The instructions include the use of common shell utilities like
ls,tail,rg(ripgrep), andfind. These tools are used for their intended purpose of listing, searching, and viewing log data locally. - Indirect Prompt Injection Surface: As the skill involves reading log files, there is a potential surface for indirect prompt injection if those logs contain untrusted content. The agent should treat data from logs as content to be analyzed rather than instructions to be followed.
Audit Metadata