media-processing
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: HIGHCOMMAND_EXECUTION
Full Analysis
- Privilege Escalation (HIGH): The skill provides instructions to execute commands with root privileges using
sudo. Specifically, it suggests modifying system-level configuration files such as/etc/ImageMagick-7/policy.xml, which is a high-risk activity that can bypass security controls or impact system stability.\n- Indirect Prompt Injection (LOW): The skill facilitates the processing of external media files which could contain malicious payloads targeting vulnerabilities in FFmpeg or ImageMagick. \n - Ingestion points: Multimedia files ingested via command-line arguments in FFmpeg and ImageMagick tools.\n
- Boundary markers: Absent. No mention of sandboxing or command delimiters for input files.\n
- Capability inventory: Direct execution of powerful media processing tools with extensive filter and script capabilities.\n
- Sanitization: Absent. The skill does not suggest any sanitization of filenames or metadata before processing external data.
Recommendations
- AI detected serious security threats
Audit Metadata