📦
Histórico de Auditoria
spawn - 6 auditorias
Versão da auditoria 6
Mais recente Baixo RiscoJan 21, 2026, 04:21 PM
Static analyzer flagged command execution patterns, but these are expected for a terminal spawning skill. The skill's core purpose is to launch external processes in new terminal windows. Commands are properly quoted, arguments passed as lists, and all execution is user-initiated with visible output. No malicious intent or data exfiltration found.
13
Arquivos analisados
6,481
Linhas analisadas
4
achados
claude
Auditado por
Problemas de Baixo Risco (2)
agent/fork_terminal.py:58-61agent/fork_terminal.py:93agent/fork_terminal.py:161agent/fork_terminal.py:196
Shell command execution patterns detected
The skill spawns external terminal processes using subprocess. This is the intended functionality for a terminal spawning skill. Commands are properly quoted and arguments are passed as lists where possible.
Temporary file handling for output capture
The skill writes terminal output to temporary files for capture. Files use UUID-based names in system temp directories and are cleaned up after use.
Fatores de risco
⚙️ Comandos externos (6)
📁 Acesso ao sistema de arquivos (4)
Versão da auditoria 5
Risco MédioJan 16, 2026, 10:50 PM
AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human.
13
Arquivos analisados
1,989
Linhas analisadas
4
achados
claude
Auditado por
Nenhum problema de segurança encontrado
Fatores de risco
⚙️ Comandos externos (397)
agent/cookbook/claude-code.md:16 agent/cookbook/claude-code.md:21 agent/cookbook/claude-code.md:26 agent/cookbook/claude-code.md:27 agent/cookbook/claude-code.md:30 agent/cookbook/claude-code.md:31 agent/cookbook/claude-code.md:32 agent/cookbook/claude-code.md:34 agent/cookbook/claude-code.md:41-43 agent/cookbook/claude-code.md:43-46 agent/cookbook/claude-code.md:46-49 agent/cookbook/claude-code.md:49-52 agent/cookbook/claude-code.md:52-54 agent/cookbook/claude-code.md:54-58 agent/cookbook/claude-code.md:58-61 agent/cookbook/claude-code.md:61-63 agent/cookbook/claude-code.md:63-67 agent/cookbook/claude-code.md:67-71 agent/cookbook/claude-code.md:71-73 agent/cookbook/claude-code.md:73-76 agent/cookbook/claude-code.md:76-80 agent/cookbook/claude-code.md:80-84 agent/cookbook/claude-code.md:84-85 agent/cookbook/claude-code.md:85-88 agent/cookbook/codex-cli.md:21-25 agent/cookbook/codex-cli.md:25-27 agent/cookbook/codex-cli.md:27-28 agent/cookbook/codex-cli.md:28 agent/cookbook/codex-cli.md:28-40 agent/cookbook/codex-cli.md:40 agent/cookbook/codex-cli.md:40-45 agent/cookbook/codex-cli.md:45-46 agent/cookbook/codex-cli.md:46-49 agent/cookbook/codex-cli.md:49-50 agent/cookbook/codex-cli.md:50-51 agent/cookbook/codex-cli.md:51-56 agent/cookbook/codex-cli.md:56-59 agent/cookbook/codex-cli.md:59-60 agent/cookbook/codex-cli.md:60-61 agent/cookbook/codex-cli.md:61-62 agent/cookbook/codex-cli.md:62-63 agent/cookbook/codex-cli.md:63-64 agent/cookbook/codex-cli.md:64-65 agent/cookbook/codex-cli.md:65-70 agent/cookbook/codex-cli.md:70-72 agent/cookbook/codex-cli.md:72-75 agent/cookbook/codex-cli.md:75-78 agent/cookbook/codex-cli.md:78-81 agent/cookbook/codex-cli.md:81-84 agent/cookbook/codex-cli.md:84-87 agent/cookbook/codex-cli.md:87-89 agent/cookbook/codex-cli.md:89-93 agent/cookbook/codex-cli.md:93-96 agent/cookbook/codex-cli.md:96-98 agent/cookbook/codex-cli.md:98-101 agent/cookbook/codex-cli.md:101-107 agent/cookbook/codex-cli.md:107-108 agent/cookbook/codex-cli.md:108-109 agent/cookbook/codex-cli.md:109-110 agent/cookbook/codex-cli.md:110-111 agent/cookbook/codex-cli.md:111-112 agent/cookbook/codex-cli.md:112-113 agent/cookbook/codex-cli.md:113-114 agent/cookbook/codex-cli.md:114-118 agent/cookbook/codex-cli.md:118-120 agent/cookbook/codex-cli.md:120-123 agent/cookbook/codex-cli.md:123-125 agent/cookbook/codex-cli.md:125 agent/cookbook/codex-cli.md:125-129 agent/cookbook/codex-cli.md:129-130 agent/cookbook/codex-cli.md:130-132 agent/cookbook/codex-cli.md:132-134 agent/cookbook/copilot-cli.md:16 agent/cookbook/copilot-cli.md:17 agent/cookbook/copilot-cli.md:21 agent/cookbook/copilot-cli.md:22 agent/cookbook/copilot-cli.md:23 agent/cookbook/copilot-cli.md:28 agent/cookbook/copilot-cli.md:33 agent/cookbook/copilot-cli.md:34 agent/cookbook/copilot-cli.md:36 agent/cookbook/copilot-cli.md:36 agent/cookbook/copilot-cli.md:38 agent/cookbook/copilot-cli.md:39 agent/cookbook/copilot-cli.md:40 agent/cookbook/copilot-cli.md:41 agent/cookbook/copilot-cli.md:42 agent/cookbook/copilot-cli.md:43 agent/cookbook/copilot-cli.md:48-50 agent/cookbook/copilot-cli.md:50-53 agent/cookbook/copilot-cli.md:53-56 agent/cookbook/copilot-cli.md:56-59 agent/cookbook/copilot-cli.md:59-62 agent/cookbook/copilot-cli.md:62-65 agent/cookbook/copilot-cli.md:65-67 agent/cookbook/copilot-cli.md:67-70 agent/cookbook/copilot-cli.md:70-72 agent/cookbook/copilot-cli.md:72-76 agent/cookbook/copilot-cli.md:76-79 agent/cookbook/copilot-cli.md:79-81 agent/cookbook/copilot-cli.md:81-84 agent/cookbook/copilot-cli.md:84-90 agent/cookbook/copilot-cli.md:90-91 agent/cookbook/copilot-cli.md:91-92 agent/cookbook/copilot-cli.md:92-93 agent/cookbook/copilot-cli.md:93-94 agent/cookbook/copilot-cli.md:94-95 agent/cookbook/copilot-cli.md:95-96 agent/cookbook/copilot-cli.md:96-102 agent/cookbook/copilot-cli.md:102-103 agent/cookbook/copilot-cli.md:103-104 agent/cookbook/copilot-cli.md:104-105 agent/cookbook/copilot-cli.md:105-106 agent/cookbook/copilot-cli.md:106-107 agent/cookbook/copilot-cli.md:107-108 agent/cookbook/copilot-cli.md:108-109 agent/cookbook/copilot-cli.md:109-110 agent/cookbook/copilot-cli.md:110-111 agent/cookbook/copilot-cli.md:111-117 agent/cookbook/copilot-cli.md:117-118 agent/cookbook/copilot-cli.md:118-119 agent/cookbook/copilot-cli.md:119-120 agent/cookbook/copilot-cli.md:120-121 agent/cookbook/copilot-cli.md:121-125 agent/cookbook/copilot-cli.md:125-126 agent/cookbook/copilot-cli.md:126-131 agent/cookbook/copilot-cli.md:131-133 agent/cookbook/copilot-cli.md:133-136 agent/cookbook/copilot-cli.md:136-138 agent/cookbook/copilot-cli.md:138-144 agent/cookbook/copilot-cli.md:144-145 agent/cookbook/copilot-cli.md:145-147 agent/cookbook/copilot-cli.md:147 agent/cookbook/copilot-cli.md:147-148 agent/cookbook/copilot-cli.md:148-150 agent/cookbook/cursor-cli.md:21-24 agent/cookbook/cursor-cli.md:24-35 agent/cookbook/cursor-cli.md:35 agent/cookbook/cursor-cli.md:35-41 agent/cookbook/cursor-cli.md:41 agent/cookbook/cursor-cli.md:41-43 agent/cookbook/cursor-cli.md:43-48 agent/cookbook/cursor-cli.md:48 agent/cookbook/cursor-cli.md:48-49 agent/cookbook/cursor-cli.md:49-51 agent/cookbook/cursor-cli.md:51-53 agent/cookbook/cursor-cli.md:53-54 agent/cookbook/cursor-cli.md:54-55 agent/cookbook/cursor-cli.md:55-56 agent/cookbook/cursor-cli.md:56-57 agent/cookbook/cursor-cli.md:57-58 agent/cookbook/cursor-cli.md:58-63 agent/cookbook/cursor-cli.md:63-65 agent/cookbook/cursor-cli.md:65-68 agent/cookbook/cursor-cli.md:68-71 agent/cookbook/cursor-cli.md:71-74 agent/cookbook/cursor-cli.md:74-77 agent/cookbook/cursor-cli.md:77-80 agent/cookbook/cursor-cli.md:80-89 agent/cookbook/cursor-cli.md:89-92 agent/cookbook/cursor-cli.md:92-94 agent/cookbook/cursor-cli.md:94-97 agent/cookbook/cursor-cli.md:97-99 agent/cookbook/cursor-cli.md:99-102 agent/cookbook/cursor-cli.md:102-104 agent/cookbook/cursor-cli.md:104-108 agent/cookbook/cursor-cli.md:108-111 agent/cookbook/cursor-cli.md:111-113 agent/cookbook/cursor-cli.md:113-116 agent/cookbook/cursor-cli.md:116-122 agent/cookbook/cursor-cli.md:122-123 agent/cookbook/cursor-cli.md:123-124 agent/cookbook/cursor-cli.md:124-125 agent/cookbook/cursor-cli.md:125-126 agent/cookbook/cursor-cli.md:126-127 agent/cookbook/cursor-cli.md:127-128 agent/cookbook/cursor-cli.md:128-129 agent/cookbook/cursor-cli.md:129-130 agent/cookbook/cursor-cli.md:130-136 agent/cookbook/cursor-cli.md:136-137 agent/cookbook/cursor-cli.md:137-138 agent/cookbook/cursor-cli.md:138-139 agent/cookbook/cursor-cli.md:139-140 agent/cookbook/cursor-cli.md:140-141 agent/cookbook/cursor-cli.md:141-142 agent/cookbook/cursor-cli.md:142-148 agent/cookbook/cursor-cli.md:148-159 agent/cookbook/cursor-cli.md:159-161 agent/cookbook/cursor-cli.md:161-164 agent/cookbook/cursor-cli.md:164-168 agent/cookbook/cursor-cli.md:168-172 agent/cookbook/cursor-cli.md:172-173 agent/cookbook/cursor-cli.md:173-175 agent/cookbook/cursor-cli.md:175-176 agent/cookbook/cursor-cli.md:176 agent/cookbook/cursor-cli.md:176-178 agent/cookbook/gemini-cli.md:22-25 agent/cookbook/gemini-cli.md:25-30 agent/cookbook/gemini-cli.md:30-34 agent/cookbook/gemini-cli.md:34-42 agent/cookbook/gemini-cli.md:42 agent/cookbook/gemini-cli.md:42-46 agent/cookbook/gemini-cli.md:46-49 agent/cookbook/gemini-cli.md:49 agent/cookbook/gemini-cli.md:49-50 agent/cookbook/gemini-cli.md:50-51 agent/cookbook/gemini-cli.md:51-54 agent/cookbook/gemini-cli.md:54-55 agent/cookbook/gemini-cli.md:55-56 agent/cookbook/gemini-cli.md:56 agent/cookbook/gemini-cli.md:56-62 agent/cookbook/gemini-cli.md:62-64 agent/cookbook/gemini-cli.md:64-66 agent/cookbook/gemini-cli.md:66-67 agent/cookbook/gemini-cli.md:67 agent/cookbook/gemini-cli.md:67-68 agent/cookbook/gemini-cli.md:68-69 agent/cookbook/gemini-cli.md:69-70 agent/cookbook/gemini-cli.md:70-71 agent/cookbook/gemini-cli.md:71-76 agent/cookbook/gemini-cli.md:76-78 agent/cookbook/gemini-cli.md:78-81 agent/cookbook/gemini-cli.md:81-84 agent/cookbook/gemini-cli.md:84-87 agent/cookbook/gemini-cli.md:87-90 agent/cookbook/gemini-cli.md:90-93 agent/cookbook/gemini-cli.md:93-95 agent/cookbook/gemini-cli.md:95-99 agent/cookbook/gemini-cli.md:99-102 agent/cookbook/gemini-cli.md:102-104 agent/cookbook/gemini-cli.md:104-107 agent/cookbook/gemini-cli.md:107-113 agent/cookbook/gemini-cli.md:113-114 agent/cookbook/gemini-cli.md:114-115 agent/cookbook/gemini-cli.md:115-116 agent/cookbook/gemini-cli.md:116-117 agent/cookbook/gemini-cli.md:117-118 agent/cookbook/gemini-cli.md:118-119 agent/cookbook/gemini-cli.md:119-120 agent/cookbook/gemini-cli.md:120-121 agent/cookbook/gemini-cli.md:121-122 agent/cookbook/gemini-cli.md:122-123 agent/cookbook/gemini-cli.md:123-124 agent/cookbook/gemini-cli.md:124-125 agent/cookbook/gemini-cli.md:125-129 agent/cookbook/gemini-cli.md:129 agent/cookbook/gemini-cli.md:129-131 agent/cookbook/gemini-cli.md:131-134 agent/cookbook/gemini-cli.md:134-138 agent/cookbook/gemini-cli.md:138-142 agent/cookbook/gemini-cli.md:142-143 agent/cookbook/gemini-cli.md:143-145 agent/cookbook/gemini-cli.md:145-146 agent/cookbook/gemini-cli.md:146 agent/cookbook/gemini-cli.md:146-148 agent/cookbook/opencode-cli.md:17 agent/cookbook/opencode-cli.md:17 agent/cookbook/opencode-cli.md:17 agent/cookbook/opencode-cli.md:18 agent/cookbook/opencode-cli.md:34 agent/cookbook/opencode-cli.md:40 agent/cookbook/opencode-cli.md:40 agent/cookbook/opencode-cli.md:41 agent/cookbook/opencode-cli.md:43 agent/cookbook/opencode-cli.md:43 agent/cookbook/opencode-cli.md:45 agent/cookbook/opencode-cli.md:47 agent/cookbook/opencode-cli.md:48 agent/cookbook/opencode-cli.md:49 agent/cookbook/opencode-cli.md:50 agent/cookbook/opencode-cli.md:55-57 agent/cookbook/opencode-cli.md:57-60 agent/cookbook/opencode-cli.md:60-63 agent/cookbook/opencode-cli.md:63-66 agent/cookbook/opencode-cli.md:66-69 agent/cookbook/opencode-cli.md:69-72 agent/cookbook/opencode-cli.md:72-74 agent/cookbook/opencode-cli.md:74-77 agent/cookbook/opencode-cli.md:77-79 agent/cookbook/opencode-cli.md:79-83 agent/cookbook/opencode-cli.md:83-86 agent/cookbook/opencode-cli.md:86-88 agent/cookbook/opencode-cli.md:88-91 agent/cookbook/opencode-cli.md:91-97 agent/cookbook/opencode-cli.md:97-98 agent/cookbook/opencode-cli.md:98-99 agent/cookbook/opencode-cli.md:99-100 agent/cookbook/opencode-cli.md:100-101 agent/cookbook/opencode-cli.md:101-102 agent/cookbook/opencode-cli.md:102-103 agent/cookbook/opencode-cli.md:103-104 agent/cookbook/opencode-cli.md:104-105 agent/cookbook/opencode-cli.md:105-106 agent/cookbook/opencode-cli.md:106-107 agent/cookbook/opencode-cli.md:107-113 agent/cookbook/opencode-cli.md:113-114 agent/cookbook/opencode-cli.md:114-115 agent/cookbook/opencode-cli.md:115-116 agent/cookbook/opencode-cli.md:116-117 agent/cookbook/opencode-cli.md:117-118 agent/cookbook/opencode-cli.md:118-119 agent/cookbook/opencode-cli.md:119-120 agent/cookbook/opencode-cli.md:120-121 agent/cookbook/opencode-cli.md:121-122 agent/cookbook/opencode-cli.md:122-126 agent/cookbook/opencode-cli.md:126-128 agent/cookbook/opencode-cli.md:128-131 agent/cookbook/opencode-cli.md:131-133 agent/cookbook/opencode-cli.md:133 agent/cookbook/opencode-cli.md:133-135 agent/cookbook/opencode-cli.md:135-139 agent/cookbook/opencode-cli.md:139-140 agent/cookbook/opencode-cli.md:140-142 agent/cookbook/opencode-cli.md:142-143 agent/cookbook/opencode-cli.md:143-145 agent/fork_terminal.py:58 agent/fork_terminal.py:176 agent/fork_terminal.py:93 agent/fork_terminal.py:161 agent/fork_terminal.py:196 agent/fork_terminal.py:216 agent/fork_terminal.py:222 agent/fork_terminal.py:227 agent/fork_terminal.py:281 agent/fork_terminal.py:76 agent/fork_terminal.py:90 agent/fork_terminal.py:173 agent/fork_terminal.py:176 agent/fork_terminal.py:140 agent/fork_terminal.py:146 agent/fork_terminal.py:152 agent/SKILL.md:52 agent/SKILL.md:60 agent/SKILL.md:134 agent/SKILL.md:138 agent/SKILL.md:138 agent/SKILL.md:138 agent/SKILL.md:139 agent/SKILL.md:139 agent/SKILL.md:139 agent/SKILL.md:140 agent/SKILL.md:140 agent/SKILL.md:144 agent/SKILL.md:144 agent/SKILL.md:144 agent/SKILL.md:146 agent/SKILL.md:146 agent/SKILL.md:146 agent/SKILL.md:147 agent/SKILL.md:147 agent/SKILL.md:147 agent/SKILL.md:148 agent/SKILL.md:148 agent/SKILL.md:148 agent/SKILL.md:149 agent/SKILL.md:149 agent/SKILL.md:150 agent/SKILL.md:150 agent/SKILL.md:150 agent/SKILL.md:154 agent/SKILL.md:154 agent/SKILL.md:156-163 agent/SKILL.md:163-167 agent/SKILL.md:167-169 agent/SKILL.md:169-172 skill-report.json:151 skill-report.json:151 skill-report.json:122 skill-report.json:122 skill-report.json:133 skill-report.json:133 skill-report.json:151 skill-report.json:151 skill-report.json:172 SKILL.md:17 SKILL.md:47 SKILL.md:49-58 SKILL.md:58-62 SKILL.md:62-79 SKILL.md:79-89 SKILL.md:89-90 terminal/cookbook/cli-command.md:11 terminal/cookbook/cli-command.md:12-14 terminal/cookbook/cli-command.md:14-16 terminal/cookbook/cli-command.md:16-17 terminal/cookbook/cli-command.md:17-19 terminal/cookbook/cli-command.md:19-30 terminal/SKILL.md:8 terminal/SKILL.md:22 terminal/SKILL.md:23 terminal/SKILL.md:31 terminal/SKILL.md:33 terminal/SKILL.md:43 terminal/SKILL.md:59 terminal/SKILL.md:59 terminal/SKILL.md:61-72 terminal/SKILL.md:72-76
🔑 Variáveis de ambiente (3)
🌐 Acesso à rede (2)
📁 Acesso ao sistema de arquivos (27)
agent/fork_terminal.py:107 agent/fork_terminal.py:108 agent/fork_terminal.py:41 agent/fork_terminal.py:42 agent/fork_terminal.py:43 agent/fork_terminal.py:134 agent/fork_terminal.py:135 agent/fork_terminal.py:136 agent/fork_terminal.py:137 agent/fork_terminal.py:183 agent/fork_terminal.py:184 agent/fork_terminal.py:185 agent/fork_terminal.py:210 agent/fork_terminal.py:211 agent/fork_terminal.py:212 agent/fork_terminal.py:157 agent/fork_terminal.py:159 agent/fork_terminal.py:126 agent/prompts/fork-summary-user-prompt.md:13 agent/prompts/fork-summary-user-prompt.md:13 agent/SKILL.md:138 agent/SKILL.md:139 skill-report.json:6 skill-report.json:263 skill-report.json:284 terminal/SKILL.md:41 terminal/SKILL.md:59
Padrões Detectados
Ruby/shell backtick executionWeak cryptographic algorithmSystem reconnaissanceGeneric API/secret keysHardcoded IP addressPython subprocess.runPython subprocess.PopenPowerShell invocationWindows cmd.exeUnix shell invocationLinux /proc filesystem accessTemp directory accessPython file write/appendPython os file operationsPython glob/pattern matchingPython environment accessCertificate/key filesHardcoded URLHidden file accessPath traversal sequence[HEURISTIC] Multiple bracket chains (6) - JSFuck/obfuscation pattern[HEURISTIC] DANGEROUS COMBINATION: Code execution + Network + Credential access[HEURISTIC] SUSPICIOUS COMBINATION: Filesystem + Credentials + Network
Versão da auditoria 4
Risco MédioJan 16, 2026, 10:50 PM
AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human.
13
Arquivos analisados
1,989
Linhas analisadas
4
achados
claude
Auditado por
Nenhum problema de segurança encontrado
Fatores de risco
⚙️ Comandos externos (397)
agent/cookbook/claude-code.md:16 agent/cookbook/claude-code.md:21 agent/cookbook/claude-code.md:26 agent/cookbook/claude-code.md:27 agent/cookbook/claude-code.md:30 agent/cookbook/claude-code.md:31 agent/cookbook/claude-code.md:32 agent/cookbook/claude-code.md:34 agent/cookbook/claude-code.md:41-43 agent/cookbook/claude-code.md:43-46 agent/cookbook/claude-code.md:46-49 agent/cookbook/claude-code.md:49-52 agent/cookbook/claude-code.md:52-54 agent/cookbook/claude-code.md:54-58 agent/cookbook/claude-code.md:58-61 agent/cookbook/claude-code.md:61-63 agent/cookbook/claude-code.md:63-67 agent/cookbook/claude-code.md:67-71 agent/cookbook/claude-code.md:71-73 agent/cookbook/claude-code.md:73-76 agent/cookbook/claude-code.md:76-80 agent/cookbook/claude-code.md:80-84 agent/cookbook/claude-code.md:84-85 agent/cookbook/claude-code.md:85-88 agent/cookbook/codex-cli.md:21-25 agent/cookbook/codex-cli.md:25-27 agent/cookbook/codex-cli.md:27-28 agent/cookbook/codex-cli.md:28 agent/cookbook/codex-cli.md:28-40 agent/cookbook/codex-cli.md:40 agent/cookbook/codex-cli.md:40-45 agent/cookbook/codex-cli.md:45-46 agent/cookbook/codex-cli.md:46-49 agent/cookbook/codex-cli.md:49-50 agent/cookbook/codex-cli.md:50-51 agent/cookbook/codex-cli.md:51-56 agent/cookbook/codex-cli.md:56-59 agent/cookbook/codex-cli.md:59-60 agent/cookbook/codex-cli.md:60-61 agent/cookbook/codex-cli.md:61-62 agent/cookbook/codex-cli.md:62-63 agent/cookbook/codex-cli.md:63-64 agent/cookbook/codex-cli.md:64-65 agent/cookbook/codex-cli.md:65-70 agent/cookbook/codex-cli.md:70-72 agent/cookbook/codex-cli.md:72-75 agent/cookbook/codex-cli.md:75-78 agent/cookbook/codex-cli.md:78-81 agent/cookbook/codex-cli.md:81-84 agent/cookbook/codex-cli.md:84-87 agent/cookbook/codex-cli.md:87-89 agent/cookbook/codex-cli.md:89-93 agent/cookbook/codex-cli.md:93-96 agent/cookbook/codex-cli.md:96-98 agent/cookbook/codex-cli.md:98-101 agent/cookbook/codex-cli.md:101-107 agent/cookbook/codex-cli.md:107-108 agent/cookbook/codex-cli.md:108-109 agent/cookbook/codex-cli.md:109-110 agent/cookbook/codex-cli.md:110-111 agent/cookbook/codex-cli.md:111-112 agent/cookbook/codex-cli.md:112-113 agent/cookbook/codex-cli.md:113-114 agent/cookbook/codex-cli.md:114-118 agent/cookbook/codex-cli.md:118-120 agent/cookbook/codex-cli.md:120-123 agent/cookbook/codex-cli.md:123-125 agent/cookbook/codex-cli.md:125 agent/cookbook/codex-cli.md:125-129 agent/cookbook/codex-cli.md:129-130 agent/cookbook/codex-cli.md:130-132 agent/cookbook/codex-cli.md:132-134 agent/cookbook/copilot-cli.md:16 agent/cookbook/copilot-cli.md:17 agent/cookbook/copilot-cli.md:21 agent/cookbook/copilot-cli.md:22 agent/cookbook/copilot-cli.md:23 agent/cookbook/copilot-cli.md:28 agent/cookbook/copilot-cli.md:33 agent/cookbook/copilot-cli.md:34 agent/cookbook/copilot-cli.md:36 agent/cookbook/copilot-cli.md:36 agent/cookbook/copilot-cli.md:38 agent/cookbook/copilot-cli.md:39 agent/cookbook/copilot-cli.md:40 agent/cookbook/copilot-cli.md:41 agent/cookbook/copilot-cli.md:42 agent/cookbook/copilot-cli.md:43 agent/cookbook/copilot-cli.md:48-50 agent/cookbook/copilot-cli.md:50-53 agent/cookbook/copilot-cli.md:53-56 agent/cookbook/copilot-cli.md:56-59 agent/cookbook/copilot-cli.md:59-62 agent/cookbook/copilot-cli.md:62-65 agent/cookbook/copilot-cli.md:65-67 agent/cookbook/copilot-cli.md:67-70 agent/cookbook/copilot-cli.md:70-72 agent/cookbook/copilot-cli.md:72-76 agent/cookbook/copilot-cli.md:76-79 agent/cookbook/copilot-cli.md:79-81 agent/cookbook/copilot-cli.md:81-84 agent/cookbook/copilot-cli.md:84-90 agent/cookbook/copilot-cli.md:90-91 agent/cookbook/copilot-cli.md:91-92 agent/cookbook/copilot-cli.md:92-93 agent/cookbook/copilot-cli.md:93-94 agent/cookbook/copilot-cli.md:94-95 agent/cookbook/copilot-cli.md:95-96 agent/cookbook/copilot-cli.md:96-102 agent/cookbook/copilot-cli.md:102-103 agent/cookbook/copilot-cli.md:103-104 agent/cookbook/copilot-cli.md:104-105 agent/cookbook/copilot-cli.md:105-106 agent/cookbook/copilot-cli.md:106-107 agent/cookbook/copilot-cli.md:107-108 agent/cookbook/copilot-cli.md:108-109 agent/cookbook/copilot-cli.md:109-110 agent/cookbook/copilot-cli.md:110-111 agent/cookbook/copilot-cli.md:111-117 agent/cookbook/copilot-cli.md:117-118 agent/cookbook/copilot-cli.md:118-119 agent/cookbook/copilot-cli.md:119-120 agent/cookbook/copilot-cli.md:120-121 agent/cookbook/copilot-cli.md:121-125 agent/cookbook/copilot-cli.md:125-126 agent/cookbook/copilot-cli.md:126-131 agent/cookbook/copilot-cli.md:131-133 agent/cookbook/copilot-cli.md:133-136 agent/cookbook/copilot-cli.md:136-138 agent/cookbook/copilot-cli.md:138-144 agent/cookbook/copilot-cli.md:144-145 agent/cookbook/copilot-cli.md:145-147 agent/cookbook/copilot-cli.md:147 agent/cookbook/copilot-cli.md:147-148 agent/cookbook/copilot-cli.md:148-150 agent/cookbook/cursor-cli.md:21-24 agent/cookbook/cursor-cli.md:24-35 agent/cookbook/cursor-cli.md:35 agent/cookbook/cursor-cli.md:35-41 agent/cookbook/cursor-cli.md:41 agent/cookbook/cursor-cli.md:41-43 agent/cookbook/cursor-cli.md:43-48 agent/cookbook/cursor-cli.md:48 agent/cookbook/cursor-cli.md:48-49 agent/cookbook/cursor-cli.md:49-51 agent/cookbook/cursor-cli.md:51-53 agent/cookbook/cursor-cli.md:53-54 agent/cookbook/cursor-cli.md:54-55 agent/cookbook/cursor-cli.md:55-56 agent/cookbook/cursor-cli.md:56-57 agent/cookbook/cursor-cli.md:57-58 agent/cookbook/cursor-cli.md:58-63 agent/cookbook/cursor-cli.md:63-65 agent/cookbook/cursor-cli.md:65-68 agent/cookbook/cursor-cli.md:68-71 agent/cookbook/cursor-cli.md:71-74 agent/cookbook/cursor-cli.md:74-77 agent/cookbook/cursor-cli.md:77-80 agent/cookbook/cursor-cli.md:80-89 agent/cookbook/cursor-cli.md:89-92 agent/cookbook/cursor-cli.md:92-94 agent/cookbook/cursor-cli.md:94-97 agent/cookbook/cursor-cli.md:97-99 agent/cookbook/cursor-cli.md:99-102 agent/cookbook/cursor-cli.md:102-104 agent/cookbook/cursor-cli.md:104-108 agent/cookbook/cursor-cli.md:108-111 agent/cookbook/cursor-cli.md:111-113 agent/cookbook/cursor-cli.md:113-116 agent/cookbook/cursor-cli.md:116-122 agent/cookbook/cursor-cli.md:122-123 agent/cookbook/cursor-cli.md:123-124 agent/cookbook/cursor-cli.md:124-125 agent/cookbook/cursor-cli.md:125-126 agent/cookbook/cursor-cli.md:126-127 agent/cookbook/cursor-cli.md:127-128 agent/cookbook/cursor-cli.md:128-129 agent/cookbook/cursor-cli.md:129-130 agent/cookbook/cursor-cli.md:130-136 agent/cookbook/cursor-cli.md:136-137 agent/cookbook/cursor-cli.md:137-138 agent/cookbook/cursor-cli.md:138-139 agent/cookbook/cursor-cli.md:139-140 agent/cookbook/cursor-cli.md:140-141 agent/cookbook/cursor-cli.md:141-142 agent/cookbook/cursor-cli.md:142-148 agent/cookbook/cursor-cli.md:148-159 agent/cookbook/cursor-cli.md:159-161 agent/cookbook/cursor-cli.md:161-164 agent/cookbook/cursor-cli.md:164-168 agent/cookbook/cursor-cli.md:168-172 agent/cookbook/cursor-cli.md:172-173 agent/cookbook/cursor-cli.md:173-175 agent/cookbook/cursor-cli.md:175-176 agent/cookbook/cursor-cli.md:176 agent/cookbook/cursor-cli.md:176-178 agent/cookbook/gemini-cli.md:22-25 agent/cookbook/gemini-cli.md:25-30 agent/cookbook/gemini-cli.md:30-34 agent/cookbook/gemini-cli.md:34-42 agent/cookbook/gemini-cli.md:42 agent/cookbook/gemini-cli.md:42-46 agent/cookbook/gemini-cli.md:46-49 agent/cookbook/gemini-cli.md:49 agent/cookbook/gemini-cli.md:49-50 agent/cookbook/gemini-cli.md:50-51 agent/cookbook/gemini-cli.md:51-54 agent/cookbook/gemini-cli.md:54-55 agent/cookbook/gemini-cli.md:55-56 agent/cookbook/gemini-cli.md:56 agent/cookbook/gemini-cli.md:56-62 agent/cookbook/gemini-cli.md:62-64 agent/cookbook/gemini-cli.md:64-66 agent/cookbook/gemini-cli.md:66-67 agent/cookbook/gemini-cli.md:67 agent/cookbook/gemini-cli.md:67-68 agent/cookbook/gemini-cli.md:68-69 agent/cookbook/gemini-cli.md:69-70 agent/cookbook/gemini-cli.md:70-71 agent/cookbook/gemini-cli.md:71-76 agent/cookbook/gemini-cli.md:76-78 agent/cookbook/gemini-cli.md:78-81 agent/cookbook/gemini-cli.md:81-84 agent/cookbook/gemini-cli.md:84-87 agent/cookbook/gemini-cli.md:87-90 agent/cookbook/gemini-cli.md:90-93 agent/cookbook/gemini-cli.md:93-95 agent/cookbook/gemini-cli.md:95-99 agent/cookbook/gemini-cli.md:99-102 agent/cookbook/gemini-cli.md:102-104 agent/cookbook/gemini-cli.md:104-107 agent/cookbook/gemini-cli.md:107-113 agent/cookbook/gemini-cli.md:113-114 agent/cookbook/gemini-cli.md:114-115 agent/cookbook/gemini-cli.md:115-116 agent/cookbook/gemini-cli.md:116-117 agent/cookbook/gemini-cli.md:117-118 agent/cookbook/gemini-cli.md:118-119 agent/cookbook/gemini-cli.md:119-120 agent/cookbook/gemini-cli.md:120-121 agent/cookbook/gemini-cli.md:121-122 agent/cookbook/gemini-cli.md:122-123 agent/cookbook/gemini-cli.md:123-124 agent/cookbook/gemini-cli.md:124-125 agent/cookbook/gemini-cli.md:125-129 agent/cookbook/gemini-cli.md:129 agent/cookbook/gemini-cli.md:129-131 agent/cookbook/gemini-cli.md:131-134 agent/cookbook/gemini-cli.md:134-138 agent/cookbook/gemini-cli.md:138-142 agent/cookbook/gemini-cli.md:142-143 agent/cookbook/gemini-cli.md:143-145 agent/cookbook/gemini-cli.md:145-146 agent/cookbook/gemini-cli.md:146 agent/cookbook/gemini-cli.md:146-148 agent/cookbook/opencode-cli.md:17 agent/cookbook/opencode-cli.md:17 agent/cookbook/opencode-cli.md:17 agent/cookbook/opencode-cli.md:18 agent/cookbook/opencode-cli.md:34 agent/cookbook/opencode-cli.md:40 agent/cookbook/opencode-cli.md:40 agent/cookbook/opencode-cli.md:41 agent/cookbook/opencode-cli.md:43 agent/cookbook/opencode-cli.md:43 agent/cookbook/opencode-cli.md:45 agent/cookbook/opencode-cli.md:47 agent/cookbook/opencode-cli.md:48 agent/cookbook/opencode-cli.md:49 agent/cookbook/opencode-cli.md:50 agent/cookbook/opencode-cli.md:55-57 agent/cookbook/opencode-cli.md:57-60 agent/cookbook/opencode-cli.md:60-63 agent/cookbook/opencode-cli.md:63-66 agent/cookbook/opencode-cli.md:66-69 agent/cookbook/opencode-cli.md:69-72 agent/cookbook/opencode-cli.md:72-74 agent/cookbook/opencode-cli.md:74-77 agent/cookbook/opencode-cli.md:77-79 agent/cookbook/opencode-cli.md:79-83 agent/cookbook/opencode-cli.md:83-86 agent/cookbook/opencode-cli.md:86-88 agent/cookbook/opencode-cli.md:88-91 agent/cookbook/opencode-cli.md:91-97 agent/cookbook/opencode-cli.md:97-98 agent/cookbook/opencode-cli.md:98-99 agent/cookbook/opencode-cli.md:99-100 agent/cookbook/opencode-cli.md:100-101 agent/cookbook/opencode-cli.md:101-102 agent/cookbook/opencode-cli.md:102-103 agent/cookbook/opencode-cli.md:103-104 agent/cookbook/opencode-cli.md:104-105 agent/cookbook/opencode-cli.md:105-106 agent/cookbook/opencode-cli.md:106-107 agent/cookbook/opencode-cli.md:107-113 agent/cookbook/opencode-cli.md:113-114 agent/cookbook/opencode-cli.md:114-115 agent/cookbook/opencode-cli.md:115-116 agent/cookbook/opencode-cli.md:116-117 agent/cookbook/opencode-cli.md:117-118 agent/cookbook/opencode-cli.md:118-119 agent/cookbook/opencode-cli.md:119-120 agent/cookbook/opencode-cli.md:120-121 agent/cookbook/opencode-cli.md:121-122 agent/cookbook/opencode-cli.md:122-126 agent/cookbook/opencode-cli.md:126-128 agent/cookbook/opencode-cli.md:128-131 agent/cookbook/opencode-cli.md:131-133 agent/cookbook/opencode-cli.md:133 agent/cookbook/opencode-cli.md:133-135 agent/cookbook/opencode-cli.md:135-139 agent/cookbook/opencode-cli.md:139-140 agent/cookbook/opencode-cli.md:140-142 agent/cookbook/opencode-cli.md:142-143 agent/cookbook/opencode-cli.md:143-145 agent/fork_terminal.py:58 agent/fork_terminal.py:176 agent/fork_terminal.py:93 agent/fork_terminal.py:161 agent/fork_terminal.py:196 agent/fork_terminal.py:216 agent/fork_terminal.py:222 agent/fork_terminal.py:227 agent/fork_terminal.py:281 agent/fork_terminal.py:76 agent/fork_terminal.py:90 agent/fork_terminal.py:173 agent/fork_terminal.py:176 agent/fork_terminal.py:140 agent/fork_terminal.py:146 agent/fork_terminal.py:152 agent/SKILL.md:52 agent/SKILL.md:60 agent/SKILL.md:134 agent/SKILL.md:138 agent/SKILL.md:138 agent/SKILL.md:138 agent/SKILL.md:139 agent/SKILL.md:139 agent/SKILL.md:139 agent/SKILL.md:140 agent/SKILL.md:140 agent/SKILL.md:144 agent/SKILL.md:144 agent/SKILL.md:144 agent/SKILL.md:146 agent/SKILL.md:146 agent/SKILL.md:146 agent/SKILL.md:147 agent/SKILL.md:147 agent/SKILL.md:147 agent/SKILL.md:148 agent/SKILL.md:148 agent/SKILL.md:148 agent/SKILL.md:149 agent/SKILL.md:149 agent/SKILL.md:150 agent/SKILL.md:150 agent/SKILL.md:150 agent/SKILL.md:154 agent/SKILL.md:154 agent/SKILL.md:156-163 agent/SKILL.md:163-167 agent/SKILL.md:167-169 agent/SKILL.md:169-172 skill-report.json:151 skill-report.json:151 skill-report.json:122 skill-report.json:122 skill-report.json:133 skill-report.json:133 skill-report.json:151 skill-report.json:151 skill-report.json:172 SKILL.md:17 SKILL.md:47 SKILL.md:49-58 SKILL.md:58-62 SKILL.md:62-79 SKILL.md:79-89 SKILL.md:89-90 terminal/cookbook/cli-command.md:11 terminal/cookbook/cli-command.md:12-14 terminal/cookbook/cli-command.md:14-16 terminal/cookbook/cli-command.md:16-17 terminal/cookbook/cli-command.md:17-19 terminal/cookbook/cli-command.md:19-30 terminal/SKILL.md:8 terminal/SKILL.md:22 terminal/SKILL.md:23 terminal/SKILL.md:31 terminal/SKILL.md:33 terminal/SKILL.md:43 terminal/SKILL.md:59 terminal/SKILL.md:59 terminal/SKILL.md:61-72 terminal/SKILL.md:72-76
🔑 Variáveis de ambiente (3)
🌐 Acesso à rede (2)
📁 Acesso ao sistema de arquivos (27)
agent/fork_terminal.py:107 agent/fork_terminal.py:108 agent/fork_terminal.py:41 agent/fork_terminal.py:42 agent/fork_terminal.py:43 agent/fork_terminal.py:134 agent/fork_terminal.py:135 agent/fork_terminal.py:136 agent/fork_terminal.py:137 agent/fork_terminal.py:183 agent/fork_terminal.py:184 agent/fork_terminal.py:185 agent/fork_terminal.py:210 agent/fork_terminal.py:211 agent/fork_terminal.py:212 agent/fork_terminal.py:157 agent/fork_terminal.py:159 agent/fork_terminal.py:126 agent/prompts/fork-summary-user-prompt.md:13 agent/prompts/fork-summary-user-prompt.md:13 agent/SKILL.md:138 agent/SKILL.md:139 skill-report.json:6 skill-report.json:263 skill-report.json:284 terminal/SKILL.md:41 terminal/SKILL.md:59
Padrões Detectados
Ruby/shell backtick executionWeak cryptographic algorithmSystem reconnaissanceGeneric API/secret keysHardcoded IP addressPython subprocess.runPython subprocess.PopenPowerShell invocationWindows cmd.exeUnix shell invocationLinux /proc filesystem accessTemp directory accessPython file write/appendPython os file operationsPython glob/pattern matchingPython environment accessCertificate/key filesHardcoded URLHidden file accessPath traversal sequence[HEURISTIC] Multiple bracket chains (6) - JSFuck/obfuscation pattern[HEURISTIC] DANGEROUS COMBINATION: Code execution + Network + Credential access[HEURISTIC] SUSPICIOUS COMBINATION: Filesystem + Credentials + Network
Versão da auditoria 3
Risco MédioJan 10, 2026, 12:39 PM
This skill enables spawning external processes as its core purpose. Uses subprocess execution for launching AI agents and CLI commands. The --dangerously-skip-permissions flag appears in documentation but is a documented CLI feature, not malicious code. The behavior matches the stated purpose of terminal/agent spawning.
8
Arquivos analisados
962
Linhas analisadas
7
achados
claude
Auditado por
Problemas de Alto Risco (2)
Permission bypass flag in command construction
The skill documentation instructs to use `--dangerously-skip-permissions` flag when spawning Claude Code agents. This flag bypasses all permission controls, allowing the spawned agent to execute any action without user approval. Documentation at agent/cookbook/claude-code.md:21 states 'Always run with --dangerously-skip-permissions'. An attacker with control over spawn parameters could escalate privileges. Code: `claude --model <MODEL> --dangerously-skip-permissions "<prompt>"`
Sandbox bypass flag in Codex commands
Codex cookbook instructs to use `--dangerously-bypass-approvals-and-sandbox` flag for 'full auto mode'. This flag disables all sandboxing and approval requirements, providing unrestricted system access. Documentation at agent/cookbook/codex-cli.md:45 states 'Always run with --dangerously-bypass-approvals-and-sandbox'. This is explicitly documented as dangerous behavior. Code: `codex --model <MODEL> --dangerously-bypass-approvals-and-sandbox "<prompt>"`
Problemas de Risco Médio (2)
Shell=True enables command injection
The fork_terminal.py uses `subprocess.Popen(command, shell=True)` for background processes on Linux fallback path (line 216-227). When combined with arbitrary command input from users, this could allow command injection if input sanitization is insufficient. The shell=True parameter passes the command through a shell interpreter, enabling potential injection through shell metacharacters. Code: `subprocess.Popen(wrapped_cmd, shell=True, cwd=cwd)`
Shell string construction on macOS
macOS path constructs shell commands as strings passed to osascript (line 52-56). While the command is embedded in quoted strings, shell metacharacters in user-provided commands could potentially cause issues. macOS implementation: `shell_cmd = f"cd {cwd}; {command} | tee {agent_output_file}; touch {done_file}"`
Fatores de risco
⚙️ Comandos externos (6)
📁 Acesso ao sistema de arquivos (3)
🔑 Variáveis de ambiente (2)
Versão da auditoria 2
Risco MédioJan 10, 2026, 12:39 PM
This skill enables spawning external processes as its core purpose. Uses subprocess execution for launching AI agents and CLI commands. The --dangerously-skip-permissions flag appears in documentation but is a documented CLI feature, not malicious code. The behavior matches the stated purpose of terminal/agent spawning.
8
Arquivos analisados
962
Linhas analisadas
7
achados
claude
Auditado por
Problemas de Alto Risco (2)
Permission bypass flag in command construction
The skill documentation instructs to use `--dangerously-skip-permissions` flag when spawning Claude Code agents. This flag bypasses all permission controls, allowing the spawned agent to execute any action without user approval. Documentation at agent/cookbook/claude-code.md:21 states 'Always run with --dangerously-skip-permissions'. An attacker with control over spawn parameters could escalate privileges. Code: `claude --model <MODEL> --dangerously-skip-permissions "<prompt>"`
Sandbox bypass flag in Codex commands
Codex cookbook instructs to use `--dangerously-bypass-approvals-and-sandbox` flag for 'full auto mode'. This flag disables all sandboxing and approval requirements, providing unrestricted system access. Documentation at agent/cookbook/codex-cli.md:45 states 'Always run with --dangerously-bypass-approvals-and-sandbox'. This is explicitly documented as dangerous behavior. Code: `codex --model <MODEL> --dangerously-bypass-approvals-and-sandbox "<prompt>"`
Problemas de Risco Médio (2)
Shell=True enables command injection
The fork_terminal.py uses `subprocess.Popen(command, shell=True)` for background processes on Linux fallback path (line 216-227). When combined with arbitrary command input from users, this could allow command injection if input sanitization is insufficient. The shell=True parameter passes the command through a shell interpreter, enabling potential injection through shell metacharacters. Code: `subprocess.Popen(wrapped_cmd, shell=True, cwd=cwd)`
Shell string construction on macOS
macOS path constructs shell commands as strings passed to osascript (line 52-56). While the command is embedded in quoted strings, shell metacharacters in user-provided commands could potentially cause issues. macOS implementation: `shell_cmd = f"cd {cwd}; {command} | tee {agent_output_file}; touch {done_file}"`
Fatores de risco
⚙️ Comandos externos (6)
📁 Acesso ao sistema de arquivos (3)
🔑 Variáveis de ambiente (2)
Versão da auditoria 1
Risco MédioJan 10, 2026, 12:39 PM
This skill enables spawning external processes as its core purpose. Uses subprocess execution for launching AI agents and CLI commands. The --dangerously-skip-permissions flag appears in documentation but is a documented CLI feature, not malicious code. The behavior matches the stated purpose of terminal/agent spawning.
8
Arquivos analisados
962
Linhas analisadas
7
achados
claude
Auditado por
Problemas de Alto Risco (2)
Permission bypass flag in command construction
The skill documentation instructs to use `--dangerously-skip-permissions` flag when spawning Claude Code agents. This flag bypasses all permission controls, allowing the spawned agent to execute any action without user approval. Documentation at agent/cookbook/claude-code.md:21 states 'Always run with --dangerously-skip-permissions'. An attacker with control over spawn parameters could escalate privileges. Code: `claude --model <MODEL> --dangerously-skip-permissions "<prompt>"`
Sandbox bypass flag in Codex commands
Codex cookbook instructs to use `--dangerously-bypass-approvals-and-sandbox` flag for 'full auto mode'. This flag disables all sandboxing and approval requirements, providing unrestricted system access. Documentation at agent/cookbook/codex-cli.md:45 states 'Always run with --dangerously-bypass-approvals-and-sandbox'. This is explicitly documented as dangerous behavior. Code: `codex --model <MODEL> --dangerously-bypass-approvals-and-sandbox "<prompt>"`
Problemas de Risco Médio (2)
Shell=True enables command injection
The fork_terminal.py uses `subprocess.Popen(command, shell=True)` for background processes on Linux fallback path (line 216-227). When combined with arbitrary command input from users, this could allow command injection if input sanitization is insufficient. The shell=True parameter passes the command through a shell interpreter, enabling potential injection through shell metacharacters. Code: `subprocess.Popen(wrapped_cmd, shell=True, cwd=cwd)`
Shell string construction on macOS
macOS path constructs shell commands as strings passed to osascript (line 52-56). While the command is embedded in quoted strings, shell metacharacters in user-provided commands could potentially cause issues. macOS implementation: `shell_cmd = f"cd {cwd}; {command} | tee {agent_output_file}; touch {done_file}"`