clipboard
Pass
Audited by Gen Agent Trust Hub on Apr 11, 2026
Risk Level: SAFEDATA_EXFILTRATIONCOMMAND_EXECUTION
Full Analysis
- [DATA_EXFILTRATION]: The skill accesses the system clipboard using the
pbpastecommand. This represents a data exposure risk as the clipboard often contains sensitive information such as credentials, private keys, or personal data that the agent can then access and potentially transmit elsewhere.- [INDIRECT_PROMPT_INJECTION]: The skill reads and processes untrusted data from the system clipboard, creating a surface for indirect prompt injection attacks. - Ingestion points:
clipboard_cli.shretrieves content from the system clipboard viapbpaste. - Boundary markers: None present; external clipboard data is directly injected into the agent's context.
- Capability inventory: The skill executes local shell commands (
pbcopy,pbpaste) and can modify system state by overwriting the clipboard content. - Sanitization: None; the script lacks escaping for characters like double quotes or backslashes when constructing the JSON response, which can lead to schema confusion or malformed output if the clipboard content is craftily formatted.- [COMMAND_EXECUTION]: The skill interacts with the host operating system by executing the
pbcopyandpbpasteutility commands within a bash script. While these are the intended tools for the skill's purpose, they represent a direct interface with system utilities via a shell environment.
Audit Metadata