skills/phuryn/skills/docx/Gen Agent Trust Hub

docx

Warn

Audited by Gen Agent Trust Hub on Jun 26, 2026

Risk Level: MEDIUMCOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill performs runtime compilation of C source code into a shared library using gcc. Specifically, in scripts/office/soffice.py, a socket shim is written to a temporary file, compiled, and subsequently injected into the LibreOffice execution environment using the LD_PRELOAD mechanism. This is implemented to bypass AF_UNIX socket restrictions in sandboxed environments.
  • [COMMAND_EXECUTION]: Several scripts utilize subprocess.run to execute external binaries and system tools, including:
  • soffice (LibreOffice) for document conversion and macro execution in scripts/accept_changes.py and scripts/office/soffice.py.
  • git for generating text differences in scripts/office/validators/redlining.py.
  • gcc for the aforementioned runtime compilation in scripts/office/soffice.py.
  • [SAFE]: The skill uses defusedxml and lxml for XML parsing, which provides protection against common XML-based attacks like XML External Entity (XXE) injection.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 26, 2026, 11:48 AM
Security Audit — agent-trust-hub — docx