review-logging-patterns
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is primarily educational and instructional, providing best practices for structured logging and error handling.
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the 'evlog' library and various community adapters (Axiom, Sentry, PostHog, Better Stack) from the official npm registry. These are legitimate tools for observability and logging.
- [DATA_EXFILTRATION]: While the skill's purpose is to send data to external logging services, it includes a dedicated 'Security' section and checklist items that explicitly warn against logging sensitive information such as passwords, API keys, and PII. It also provides helper patterns for sanitizing data before logging.
- [PROMPT_INJECTION]: No instructions were found that attempt to override system prompts or bypass safety filters. The instructions are aligned with the stated purpose of code review and library adoption.
- [COMMAND_EXECUTION]: Examples include standard npm installation commands and framework-specific configuration code. No suspicious or arbitrary shell command execution patterns were identified.
Audit Metadata