agent-rules
Warn
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: MEDIUMCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The script
scripts/verify-commands.shextracts strings fromAGENTS.mdmarkdown files and executes them viabash -cwrapped in atimeoutcommand. This feature is intended to ensure that project-specific documentation remains functional. However, the execution of arbitrary strings parsed from markdown represents a significant security surface. While the script implements anis_safe_commandfunction that blacklists dangerous operations such asrm -rf,sudo, and shell piping, blacklists are inherently incomplete and can often be bypassed by alternative execution methods or obfuscated command construction. This feature should only be utilized on repositories where the documentation content is fully trusted.
Audit Metadata