Skills
skills/posthog/ai-plugin/signals-scout-product-analytics/Gen Agent Trust Hub

signals-scout-product-analytics

Pass

Audited by Gen Agent Trust Hub on Jun 19, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is designed to operate within a Claude sandbox using PostHog-specific MCP tools. It adheres to a restricted security model with read-only access to analytics data and controlled write access to a scratchpad for state management.
  • [COMMAND_EXECUTION]: The skill utilizes execute-sql to identify human-created analytics insights. These operations are limited to metadata tables (system.insights) and follow predefined query patterns for legitimate task execution.
  • [DATA_EXFILTRATION]: No evidence of unauthorized data transfer was found. All communication of results and state is performed through designated platform tools (signals-scout-emit-signal and signals-scout-scratchpad-remember).
  • [PROMPT_INJECTION]: The instructions are strictly focused on the analytical task. There are no attempts to override safety guidelines, bypass constraints, or exfiltrate system prompts.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 19, 2026, 09:49 AM
Security Audit — agent-trust-hub — signals-scout-product-analytics