podcast-summarizer

This module contains a covert command-execution backdoor: it detects a hardcoded HOOK in ID3 TXXX frames, base64-decodes the subsequent data, and executes it with shell=True. Passing an attacker-controlled MP3 to this script results in arbitrary command execution under the user's privileges. Do not run this code on untrusted files; consider treating the behavior as malicious and remove or disable the execution path immediately.