Skills
skills/dieterwang7/huateamassistant-baoyu-skills/baoyu-format-markdown/Gen Agent Trust Hub

baoyu-format-markdown

Fail

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: HIGHCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
  • COMMAND_EXECUTION (HIGH): The applyAutocorrect function in scripts/autocorrect.ts executes a shell command using execSync with the filePath variable directly interpolated. A malicious file path containing shell metacharacters like semicolons or backticks can trigger arbitrary command execution. Evidence found in autocorrect.ts.
  • EXTERNAL_DOWNLOADS (HIGH): The skill uses npx in scripts/autocorrect.ts to execute autocorrect-node. This results in downloading and executing unverified code from the npm registry at runtime without integrity verification.
  • REMOTE_CODE_EXECUTION (HIGH): The combination of shell injection in filePath and the use of execSync provides a direct path for remote code execution on the system running the agent.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 16, 2026, 05:18 AM