Skills
skills/posthog/ai-plugin/signals-scout-apm/Gen Agent Trust Hub

signals-scout-apm

Pass

Audited by Gen Agent Trust Hub on Jun 22, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No significant security vulnerabilities were identified. The skill is designed to perform telemetry analysis using official PostHog vendor-provided tools.
  • [PROMPT_INJECTION]: The skill handles trace data from external instrumented services which presents a surface for indirect prompt injection. Ingestion points: Trace data retrieved via 'apm-trace-get' and 'query-apm-spans' in SKILL.md; Boundary markers: None specified for the trace data content; Capability inventory: Ability to emit findings via 'signals-scout-emit-signal' and write to persistent memory via 'signals-scout-scratchpad-remember' in SKILL.md; Sanitization: The instructions do not define sanitization or escaping protocols for incoming trace attributes.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 22, 2026, 11:54 PM
Security Audit — agent-trust-hub — signals-scout-apm