capture
Warn
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a Bash command string that includes direct shell interpolation of the $0 variable.
- [COMMAND_EXECUTION]: The $0 parameter, representing the screenshot interval, is not sanitized or quoted within the command line:
python pipeline.py capture --save-dir output/captures --interval $0. This allows a malicious actor to inject shell metacharacters (e.g.,;,&,|) to execute unauthorized commands on the host machine. - [DATA_EXFILTRATION]: The skill's primary function is to capture visual data from the user's screen. This grants the agent access to potentially sensitive or private information displayed in the capture area, which could lead to unauthorized data exposure.
Audit Metadata