nemoclaw-user-monitor-sandbox

Pass

Audited by Gen Agent Trust Hub on Jun 18, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No malicious patterns or security vulnerabilities were identified. The skill instructions focus on debugging and monitoring tasks using local CLI tools.
  • [EXTERNAL_DOWNLOADS]: The skill references the official NVIDIA NemoClaw GitHub repository, which is a well-known and trusted source for documentation and code.
  • [COMMAND_EXECUTION]: Provides instructions for using diagnostic commands like nemoclaw, openshell, and openclaw to troubleshoot sandbox health and connectivity.
  • [PROMPT_INJECTION]: Indirect prompt injection surface identified through log analysis.
  • Ingestion points: Reads sandbox logs via nemoclaw <name> logs (SKILL.md).
  • Boundary markers: Absent; the agent is not provided with specific delimiters or instructions to ignore embedded content within logs.
  • Capability inventory: Executes shell commands for sandbox management and diagnostics.
  • Sanitization: Absent; the skill does not prescribe sanitization of log output before the agent processes it.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 18, 2026, 04:36 PM
Security Audit — agent-trust-hub — nemoclaw-user-monitor-sandbox