kernel-debugging

Pass

Audited by Gen Agent Trust Hub on Jun 27, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides numerous commands for interacting with kernel debug and configuration interfaces. These include writing to /sys/kernel/debug/tracing/, /proc/sys/kernel/printk, and /sys/module/kgdboc/parameters/kgdboc. These operations typically require root or sudo privileges and are powerful tools for system modification.
  • [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection due to the way it handles external data.
  • Ingestion points: The agent is instructed to read potentially untrusted data from dmesg, /sys/kernel/debug/tracing/trace_pipe, and /sys/kernel/debug/tracing/trace (SKILL.md).
  • Boundary markers: Absent. The skill does not instruct the agent to use delimiters or warnings when processing this external output.
  • Capability inventory: The skill possesses capabilities for high-privilege system modifications via sudo and direct writes to kernel-level sysfs and procfs entries (SKILL.md).
  • Sanitization: Absent. There is no mention of validating or escaping the content retrieved from kernel logs or trace buffers before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 27, 2026, 12:04 PM