creating-wpf-flowdocument
Warn
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The hyperlink handler in 'SKILL.md' uses 'Process.Start' with 'UseShellExecute' set to true to open URIs. This is a risky pattern that can lead to command execution if the URI is sourced from untrusted data and not properly sanitized.
- [REMOTE_CODE_EXECUTION]: The 'ADVANCED.md' file provides a 'LoadFromXaml' utility that uses 'XamlReader.Load' to deserialize XAML content. This API is susceptible to unsafe deserialization attacks, where malicious XAML can be used to execute arbitrary code.
Audit Metadata