tunneling
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: HIGHCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION] (MEDIUM): The skill executes SSH commands on the host machine using the -o StrictHostKeyChecking=accept-new flag, which automatically trusts the identity of the remote server, increasing vulnerability to Man-in-the-Middle (MITM) attacks.
- [DATA_EXFILTRATION] (HIGH): The skill's primary function is to tunnel local network traffic to a public internet endpoint. This exposes internal network services to any external actor, bypassing network security boundaries and potentially exposing sensitive data or unauthenticated services.
- [EXTERNAL_DOWNLOADS] (LOW): The skill relies on tinyfi.sh, an unverified third-party service, to facilitate the tunnel. While no code is downloaded, the service provider can potentially observe all traffic passing through the tunnel.
Recommendations
- AI detected serious security threats
Audit Metadata