veadk-skills
Warn
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONDATA_EXFILTRATIONREMOTE_CODE_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill's main instruction file,
SKILL.md, directs the agent to execute a local Python scriptsave_file.pyusing command-line arguments to persist generated code to the disk. - [DATA_EXPOSURE]: The included script
scripts/save_file.pyimplements an arbitrary file write capability. It accepts a--pathand--contentargument and writes the provided data to the specified path usingos.makedirsandopen().write(). This implementation lacks any path validation or directory sandboxing, allowing the agent (or a malicious user influencing the agent) to write files to sensitive locations such as shell profiles or configuration directories. - [REMOTE_CODE_EXECUTION]: The skill is designed to generate and save executable Python code. Because
save_file.pycan write to any path, it creates a risk where malicious code could be written to a location where it will be automatically executed by the system or another user, leading to a compromise of the host environment.
Audit Metadata