jetson-customize-clocks

Warn

Audited by Gen Agent Trust Hub on Jun 22, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides instructions to use sudo for system management tasks, such as sudo systemctl restart nvpower.service, which are required to apply configuration changes on a live Jetson target.
  • [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface by ingesting and processing data from external Board Support Package (BSP) files including device tree blobs (DTB) and shell scripts.
  • Ingestion points: Reads configuration data from files located at Linux_for_Tegra/bootloader/ and Linux_for_Tegra/rootfs/etc/systemd/nvpower.sh.
  • Boundary markers: The skill does not implement specific delimiters or instructions to prevent the agent from interpreting content within these files as instructions.
  • Capability inventory: The skill utilizes subprocess calls for dtc (device tree compiler), git, and grep, and performs write operations to an overlay tracker on the filesystem.
  • Sanitization: No explicit content validation or sanitization is performed on the files before they are processed.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 22, 2026, 08:45 PM
Security Audit — agent-trust-hub — jetson-customize-clocks