linux-troubleshooting

Pass

Audited by Gen Agent Trust Hub on Jun 21, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The workflow defines various system management and diagnostic commands, including strace for process debugging and systemctl for service management.\n- [DATA_EXFILTRATION]: The skill provides instructions to access and read system and application logs (e.g., /var/log/syslog and journalctl), which often contain sensitive system state information.\n- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it instructs the agent to process potentially untrusted data from system logs.\n
  • Ingestion points: System logs accessed via journalctl, /var/log/syslog, and grep.\n
  • Boundary markers: The instructions lack explicit delimiters or warnings to treat log content as untrusted data.\n
  • Capability inventory: The skill has access to powerful system tools like systemctl, strace, and network connectivity tools.\n
  • Sanitization: No sanitization or validation of the log content is performed prior to analysis.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 21, 2026, 02:14 AM
Security Audit — agent-trust-hub — linux-troubleshooting