makefile-for-telegram
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- Persistence Mechanisms (MEDIUM): The skill's primary purpose is to generate and install macOS LaunchAgents (stored in ~/Library/LaunchAgents/). While this is the intended function for service management, LaunchAgents are a standard persistence mechanism used to maintain code execution across reboots and user sessions.
- Data Exposure & Credentials (LOW): The generated Makefile logic reads sensitive values from a .env file and uses sed to hardcode them into a .plist file. This results in secrets, such as Telegram Bot Tokens, being stored in plain text on the local filesystem.
- Command Execution (LOW): The skill generates shell commands that interact with launchctl and create directories in the user's Library folder, which are high-privilege system-level operations.
- Indirect Prompt Injection (LOW): The skill interpolates user-provided project names and paths directly into the generated Makefile. This represents a potential injection surface if the inputs are not properly sanitized before being used in shell commands.
Audit Metadata