linux-troubleshooting
Pass
Audited by Gen Agent Trust Hub on Jun 21, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The workflow defines various system management and diagnostic commands, including
stracefor process debugging andsystemctlfor service management.\n- [DATA_EXFILTRATION]: The skill provides instructions to access and read system and application logs (e.g.,/var/log/syslogandjournalctl), which often contain sensitive system state information.\n- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it instructs the agent to process potentially untrusted data from system logs.\n - Ingestion points: System logs accessed via
journalctl,/var/log/syslog, andgrep.\n - Boundary markers: The instructions lack explicit delimiters or warnings to treat log content as untrusted data.\n
- Capability inventory: The skill has access to powerful system tools like
systemctl,strace, and network connectivity tools.\n - Sanitization: No sanitization or validation of the log content is performed prior to analysis.
Audit Metadata