Skills
skills/charpup/skill-security-auditor/command_injection_test/Gen Agent Trust Hub

command_injection_test

Fail

Audited by Gen Agent Trust Hub on Feb 26, 2026

Risk Level: HIGHCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: In TOOL.py, the execute_tool function uses subprocess.run with shell=True on a string formatted with user input. This allows an attacker to execute arbitrary shell commands by injecting metacharacters into the command parameter.
  • [COMMAND_EXECUTION]: In TOOL.py, the process_file function uses os.system to run a cat command with an unvalidated filename. This is vulnerable to command injection through the filename variable.
  • [REMOTE_CODE_EXECUTION]: In TOOL.py, the run_user_script function uses the exec() function to run code read from a file path provided as an argument. This enables arbitrary Python code execution if the file path points to a malicious script.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 26, 2026, 03:18 PM