Skills
skills/majiayu000/claude-skill-registry/adb-magisk-installer/Gen Agent Trust Hub

adb-magisk-installer

Warn

Audited by Gen Agent Trust Hub on Mar 17, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The script adb-magisk-download.py is designed to fetch Magisk APKs and boot images from GitHub releases. While GitHub is a well-known service, the automated downloading and installation of third-party system-level binaries poses an inherent risk.
  • [COMMAND_EXECUTION]: The skill executes high-privilege commands on the connected mobile device, including adb install for application sideloading and fastboot flash for overwriting the boot partition. These operations can modify the core security model of the target device.
  • [REMOTE_CODE_EXECUTION]: By downloading an external APK and flashing a patched boot image, the skill effectively facilitates the execution of external code with root privileges on the target Android system.
  • [PRIVILEGE_ESCALATION]: The core functionality of the skill is to 'root' the device, which is a form of privilege escalation by design. It automates the transition from a standard user environment to one with full administrative (root) access.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 17, 2026, 08:31 AM
Security Audit — agent-trust-hub — adb-magisk-installer