The Agent Skills Directory

[SAFE]: The skill is designed for the legitimate purpose of LLM observability. It leverages official PostHog MCP tools and includes a suite of Python scripts that strictly perform local JSON parsing and data summarization using standard libraries.
[COMMAND_EXECUTION]: The skill instructions include running local Python scripts to process trace data. These operations are restricted to reading local files and printing formatted output to the console, with no dangerous side effects or network operations identified within the scripts.
[DATA_EXFILTRATION]: No evidence of unauthorized data transfer was found. Data access is confined to trace information retrieved via authenticated PostHog tools, and the scripts themselves do not possess network capabilities.
[INDIRECT_PROMPT_INJECTION]: The skill ingests external data in the form of AI agent traces. While this presents a surface for indirect prompt injection, the skill is used for diagnostic analysis rather than autonomous action based on the trace content. The risk is considered minimal and inherent to the skill's primary analytical function.

exploring-llm-traces