matlab-connect-opcua-client
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The script
scripts/inspectOpcUaCertificate.minvokes shell commands via the MATLABsystem()function to utilizeopensslfor certificate analysis. While thecertFileargument is validated using the{mustBeFile}attribute to ensure the target exists, the use of string interpolation (sprintf) to construct the shell command presents a potential command injection vulnerability on operating systems that allow shell metacharacters in filenames. - [PROMPT_INJECTION]: The skill facilitates the ingestion and processing of external data from OPC UA certificates, creating an indirect prompt injection surface.
- Ingestion points: The
scripts/inspectOpcUaCertificate.mscript reads and extracts fields from.derand.pemcertificate files. - Boundary markers: Absent; the output of the inspection script is provided to the agent without specific delimiters or instructions to ignore embedded content.
- Capability inventory: The skill possesses the ability to perform filesystem operations (
mkdir,copyfile,rmdir) and execute shell commands (system) through theevaluate_matlab_codetool. - Sanitization: Absent; the script extracts certificate metadata using regular expressions but does not sanitize the resulting strings before they are returned to the agent's context.
Audit Metadata