First Seen
Feb 18, 2026
Last Scanned
Feb 22, 2026
Findings
2
Score
84/100
Findings (2)
Detects Python subprocess and os.system calls for command execution in skill descriptions
subprocess.check_output(Pass arguments as an explicit list instead of a shell string. Set shell=False and validate all user-supplied values before inclusion.
Likely FP if the match is in documentation explaining Python subprocess usage or in a description mentioning it as a topic.
Detects Python subprocess and os.system calls for command execution in skill descriptions
subprocess.run(Pass arguments as an explicit list instead of a shell string. Set shell=False and validate all user-supplied values before inclusion.
Likely FP if the match is in documentation explaining Python subprocess usage or in a description mentioning it as a topic.