skills/mukul975/anthropic-cybersecurity-skills/auditing-uefi-firmware-with-chipsec/Gen Agent Trust Hub
auditing-uefi-firmware-with-chipsec
Pass
Audited by Gen Agent Trust Hub on Jun 23, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes system-level commands and requires root/Administrator privileges to perform its primary function. It wraps the Intel CHIPSEC framework to read and write hardware registers, SPI flash, and UEFI variables. The implementation in
scripts/agent.pyuses list-based arguments withsubprocess.runrather than shell strings, which effectively mitigates shell injection risks. - [EXTERNAL_DOWNLOADS]: The skill provides instructions to download and install CHIPSEC from official and well-known sources, including its public GitHub repository (Intel) and PyPI. It also references reputable external tools like UEFITool and Binarly fwhunt for firmware analysis.
- [PRIVILEGE_MANAGEMENT]: The skill explicitly documents the requirement for elevated privileges (
sudo) and includes logic in the helper script to warn users if the necessary permissions are not met. This is standard and required behavior for firmware-level security software.
Audit Metadata