session-logs
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes session logs containing past conversation history, creating an indirect prompt injection surface where instructions embedded in previous sessions could influence the agent's behavior.
- Ingestion points: Session JSON files located in
.codebuddy/sessions/. - Boundary markers: Absent; there are no delimiters or instructions provided to ignore embedded commands within the log data.
- Capability inventory: Shell execution for file system search and data parsing using
ls,rg, andjq. - Sanitization: Absent; the skill does not perform validation or filtering of the log contents before they are processed by the agent.
- [COMMAND_EXECUTION]: The skill provides several bash command snippets to list, search, and parse local files. While using standard utilities like
jqandripgrep, these commands allow the agent to interact with the local file system and execute logic on stored session data.
Audit Metadata