split-drive-coach
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The
scripts/install-epm.cmdscript downloads an executable installer from official mirrors ofeaseus.com(e.g.,d1.easeus.com). EaseUS is a well-known provider of disk management software. - [REMOTE_CODE_EXECUTION]: The installer
epm_free_setup.exeis executed automatically with the/verysilentflag following the download. This enables the automated setup of the third-party partitioning tool required for the skill's primary function. - [COMMAND_EXECUTION]: The skill uses
scripts/epm-shellcmd.cmdto execute the local binaryEPMUI.exewith specific command-line arguments (startByEpm0). It also utilizes PowerShell withExecutionPolicy BypassandStart-Process -Verb RunAsto handle file writing and trigger User Account Control (UAC) for administrative access to the disk. - [PROMPT_INJECTION]: The skill's architecture for passing commands to the partition manager presents a surface for indirect prompt injection, as the agent-generated parameters are written to a temporary file and then parsed by the underlying utility.
- Ingestion points: User/agent inputs passed as arguments to
scripts/epm-shellcmd.cmdin theshellcmdandshellparamfields. - Boundary markers: No specific delimiters or safety instructions are used to separate the command intent from the parameter data in the temporary file creation process.
- Capability inventory: The skill can perform sensitive disk modifications (split, resize, create partitions) using the installed EaseUS software.
- Sanitization: The scripts perform no validation or sanitization of the input strings before writing them to the disk or passing them to the executable.
Audit Metadata