pdf2audio-parallel
Warn
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: MEDIUMCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The workflow section '1. Parse Input Parameters' instructs the agent to execute shell commands (
ls -d <STORY_NAME>/andls <STORY_NAME>/chapters/...) using a variable<STORY_NAME>derived directly from user input. This pattern is vulnerable to command injection if the user provides a malicious string containing shell metacharacters (e.g., semicolons, backticks, or command substitution sequences) which the agent might execute without prior validation. - [DATA_EXFILTRATION]: Although no direct exfiltration commands are hardcoded, the identified command injection vulnerability could be exploited to run arbitrary shell commands that exfiltrate sensitive system information, environment variables, or local files to an external server.
Audit Metadata