linkedin-article-publisher
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- [Data Exposure & Exfiltration] (SAFE): The script reads local image and HTML files to copy them to the system clipboard. This is a local-only operation with no network exfiltration capabilities.
- [Unverifiable Dependencies] (SAFE): The script relies on standard, well-known libraries (Pillow and pyobjc-framework-Cocoa) for its core functionality. These are reputable packages for image manipulation and macOS system integration.
- [Indirect Prompt Injection] (LOW): The script processes raw HTML strings which could serve as an attack surface if an agent or user pastes the content into a sensitive environment. However, the script itself does not execute or interpret the HTML content, acting only as a carrier.
- [Command Execution] (SAFE): No arbitrary command execution, shell spawning, or unsafe dynamic code evaluation (eval/exec) was detected.
Audit Metadata