Skills
skills/jdrhyne/agent-skills/sysadmin-toolbox/Gen Agent Trust Hub

sysadmin-toolbox

Warn

Audited by Gen Agent Trust Hub on Mar 15, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The script scripts/refresh.sh clones content from an external repository: https://github.com/trimstray/the-book-of-secret-knowledge.git. This creates a dependency on an external source that is not under the vendor's direct control.
  • [REMOTE_CODE_EXECUTION]: The scripts/refresh.sh utility extracts content from the external repository and overwrites the skill's reference files (references/*.md). Because these files are interpreted by the AI agent as instructions and executable patterns, this represents a mechanism for remote instruction update/injection.
  • [COMMAND_EXECUTION]: The reference files contain numerous one-liners for sensitive system operations, including:
  • Process Manipulation: Commands to find and kill processes (kill -9, fuser -k).
  • Privilege Management: Examples of sudo usage and changing file permissions (chmod 777, chmod -R -x+X).
  • Networking/Backdoors: Examples of netcat listeners that spawn shells (nc -l 5000 -e /bin/bash) and remote port forwarding via SSH.
  • File Deletion: Commands to recursively delete files and directories (rm -rf, find -delete).
  • System Wiping: Tools for securely wiping disks and files (shred, scrub, badblocks).
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 15, 2026, 01:18 AM