jetson-diagnostic

Pass

Audited by Gen Agent Trust Hub on Jun 22, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes local shell scripts (snapshot.sh, mem_summary.sh) that invoke NVIDIA-specific utilities like tegrastats, nvpmodel, and nvidia-smi to gather hardware telemetry. It also utilizes sudo -n for non-interactive access to diagnostic information requiring elevated privileges.
  • [COMMAND_EXECUTION]: Diagnostic scripts read system-level status information from paths including /proc/meminfo, /proc/device-tree/model, and /sys/kernel/debug/nvmap/, which are standard interfaces for monitoring hardware state on Jetson platforms.
  • [COMMAND_EXECUTION]: The snapshot.sh script executes inline python3 code to walk the /proc filesystem and extract memory usage data from smaps_rollup, providing a fallback mechanism for collecting process-level telemetry.
  • [PROMPT_INJECTION]: The skill creates an indirect prompt injection surface by processing output from various system tools. This is mitigated through the following evidence chain: (1) Ingestion points: data from command outputs and system status files; (2) Boundary markers: a well-defined JSON output contract provided in the documentation; (3) Capability inventory: local script execution and system-level file read access; (4) Sanitization: the json_escape function ensures that all external content is safely encoded for JSON interpolation using Python or standard text processing tools.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 22, 2026, 08:45 PM
Security Audit — agent-trust-hub — jetson-diagnostic