forensics-checklist
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill is designed to analyze forensic artifacts and logs that could contain attacker-planted instructions, creating an indirect prompt injection surface. The skill includes a 'Prompt Injection Safety Notice' in Section 8 which provides explicit instructions to the agent to treat all evidence as data only and to ignore any embedded directives.
- Ingestion points: Processes forensic artifacts, log files, and memory dumps as described in Sections 3 and 8.
- Boundary markers: Relies on instructional constraints in Section 8 rather than physical markers.
- Capability inventory: Access is limited to 'Read', 'Grep', and 'Glob' tools (SKILL.md).
- Sanitization: Implements instruction-based sanitization (Section 8) directing the agent to ignore instructions within data.
- [DATA_EXPOSURE]: The skill provides guidance on acquiring sensitive system information (memory, process lists, logs) which is necessary for its stated forensic purpose. No unauthorized data exposure or hardcoded credentials were found.
Audit Metadata