terminal

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill is designed to facilitate command execution on local and remote systems through its 'local' and 'ssh' backends. This is a core feature for its intended use case in interactive debugging and device control.
  • [COMMAND_EXECUTION]: The Python script terminal_session.py uses subprocess.Popen with list-based arguments to spawn terminal sessions and background servers. This approach avoids the use of shell=True, which is a security best practice to prevent shell injection vulnerabilities.
  • [EXTERNAL_DOWNLOADS]: The skill relies on the pyserial Python package for serial communication. The documentation correctly identifies this as a requirement for the user to install via standard package management tools.
  • [SAFE]: Interactive session metadata and logs are stored locally within the .embeddedskills directory. The script handles paths using standard library functions like pathlib and os.path.relpath to ensure consistent workspace management.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 04:07 AM
Security Audit — agent-trust-hub — terminal