Skills
skills/victoriametrics/skills/victoriatraces-query/Gen Agent Trust Hub

victoriatraces-query

Pass

Audited by Gen Agent Trust Hub on May 11, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses curl to interact with VictoriaTraces API endpoints. This is the intended behavior for monitoring and diagnostic purposes.
  • [CREDENTIALS_UNSAFE]: Authentication is handled via the $VM_AUTH_HEADER environment variable. This is a standard and safe practice for secret management; no hardcoded credentials were detected.
  • [INDIRECT_PROMPT_INJECTION]: The skill retrieves and processes external trace data which could potentially contain malicious instructions.
  • Ingestion points: Trace and span data are fetched from the configured $VM_TRACES_URL via curl (SKILL.md, references/api-reference.md).
  • Boundary markers: No explicit delimiters or instructions are used to separate API response data from the agent's instructions.
  • Capability inventory: The skill uses Bash(curl:*) to perform network requests.
  • Sanitization: There is no evidence of sanitization or structural validation performed on the retrieved JSON data before processing by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
May 11, 2026, 05:13 PM
Security Audit — agent-trust-hub — victoriatraces-query