excalidraw-visual-designer
Warn
Audited by Gen Agent Trust Hub on Jun 30, 2026
Risk Level: MEDIUMDATA_EXFILTRATIONCOMMAND_EXECUTION
Full Analysis
- [DATA_EXFILTRATION]: The helper script
scripts/make_excalidraw_clipboard.pyimplements a file-reading mechanism in themake_filefunction. It usesPath(item["path"]).read_bytes()to read data from a path provided in the input JSON specification. This data is subsequently encoded into a Data URL (Base64) and included in the clipboard JSON. The skill instructions guide the agent to write this JSON to the system clipboard and paste it into the Excalidraw website, which facilitates the exfiltration of arbitrary local file contents to a third-party domain. - [COMMAND_EXECUTION]: The skill executes a local Python script
scripts/make_excalidraw_clipboard.pyto generate clipboard data. This script performs filesystem operations (file reads) that are driven by the contents of a specification file, which may be influenced by external or untrusted data.
Audit Metadata