Skills
skills/aradotso/security-skills/malware-detection-and-removal/Gen Agent Trust Hub

malware-detection-and-removal

Warn

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The VerifyCodeSignature function uses fmt.Sprintf to construct a PowerShell command by directly interpolating the filePath variable. This pattern is vulnerable to command injection if the file path contains shell-sensitive characters like single quotes or semicolons.
  • [PROMPT_INJECTION]: The skill defines a surface for indirect prompt injection by ingesting and processing untrusted repository metadata such as descriptions and topics. A malicious repository could use these fields to deliver instructions that influence the agent's logic during the analysis process.
  • [EXTERNAL_DOWNLOADS]: The skill references legitimate and well-known services including bitdefender.com and github.com for reporting abuse and obtaining official software.
Audit Metadata
Risk Level
MEDIUM
Analyzed
May 19, 2026, 06:27 AM
Security Audit — agent-trust-hub — malware-detection-and-removal