ssh
Fail
Audited by Gen Agent Trust Hub on May 17, 2026
Risk Level: HIGHCREDENTIALS_UNSAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [CREDENTIALS_UNSAFE]: The skill instructs the user to store authentication details in
~/.claude/ssh-targets.json. This configuration includes plaintext passwords (e.g.,"password": "pass") and paths to sensitive private SSH keys (e.g.,/home/user/.ssh/id_rsa).- [EXTERNAL_DOWNLOADS]: The skill's installation instructions require the dynamic installation of thessh2Node.js package from a public registry at runtime usingnpm installwithin a generated script.- [COMMAND_EXECUTION]: The skill provides the capability to execute arbitrary shell commands on remote hosts, including administrative actions viasudo. It also explicitly documents methods for achieving persistence on remote machines usingsystemd-run,nohup, andsetsid.- [DATA_EXFILTRATION]: The skill accesses highly sensitive files, specifically the user's SSH private keys (id_rsa), which creates a risk of unauthorized credential access or movement.
Recommendations
- AI detected serious security threats
Audit Metadata