reverse-shell
Fail
Audited by Gen Agent Trust Hub on Apr 20, 2026
Risk Level: HIGHCOMMAND_EXECUTIONDATA_EXFILTRATIONREMOTE_CODE_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill contains direct shell commands designed to spawn interactive shells (
sh -i,zsh -i) and redirect their standard input and output over a network socket. - [REMOTE_CODE_EXECUTION]: The provided commands establish a reverse shell connection to external endpoints (
evil.com,attacker.host) on port 4444. This pattern is a standard technique for allowing a remote attacker to execute arbitrary commands on the system running the agent. - [DATA_EXFILTRATION]: By connecting a local interactive shell to a remote server, the skill enables an external entity to browse and transmit any local files or sensitive data accessible to the user running the command.
Recommendations
- AI detected serious security threats
Audit Metadata