kernel-debugging
Pass
Audited by Gen Agent Trust Hub on Jun 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides numerous commands for interacting with kernel debug and configuration interfaces. These include writing to
/sys/kernel/debug/tracing/,/proc/sys/kernel/printk, and/sys/module/kgdboc/parameters/kgdboc. These operations typically require root or sudo privileges and are powerful tools for system modification. - [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection due to the way it handles external data.
- Ingestion points: The agent is instructed to read potentially untrusted data from
dmesg,/sys/kernel/debug/tracing/trace_pipe, and/sys/kernel/debug/tracing/trace(SKILL.md). - Boundary markers: Absent. The skill does not instruct the agent to use delimiters or warnings when processing this external output.
- Capability inventory: The skill possesses capabilities for high-privilege system modifications via
sudoand direct writes to kernel-level sysfs and procfs entries (SKILL.md). - Sanitization: Absent. There is no mention of validating or escaping the content retrieved from kernel logs or trace buffers before processing.
Audit Metadata