subprocess module call
- Category
- Dangerous Code Execution
- Content
"-shortest", output_path, ] subprocess.run(cmd, check=True) print(f" Subtitled: {video_path} → {output_path}")- Confidence
- 88% confidence
- Finding
- subprocess.run(cmd, check=True)
Security audit
Security checks across malware telemetry and agentic risk
This video-production skill is mostly coherent, but it asks agents to use authenticated browser sessions, biometric face and voice inputs, and runtime package installation without enough scoping or user safeguards.
Install only if you are comfortable running a media pipeline that can process local files, overwrite outputs, install Python packages at runtime, use FFmpeg on provided media, and operate through an authenticated Google browser profile. Use a dedicated project directory and browser profile, review any pip install before running it, use only voices and portraits you own or have permission to use, and avoid feeding untrusted media files or arbitrary output paths.
"-shortest",
output_path,
]
subprocess.run(cmd, check=True)
print(f" Subtitled: {video_path} → {output_path}")output_path,
])
subprocess.run(cmd, check=True)
print(f"Composited {len(segment_paths)} segments with {xfade}s xfade → {output_path}")if total_frames == 0:
print(f"Warning: No subtitle frames in {subtitle_frame_dir}, skipping overlay")
# Just copy
subprocess.run(["ffmpeg", "-y", "-i", video_path, "-c", "copy", output_path],
check=True)
returnfor u in unified:
f.write(f"file '{u}'\n")
subprocess.run([
"ffmpeg", "-y",
"-f", "concat", "-safe", "0",
"-i", concat_path,with tempfile.TemporaryDirectory() as tmpdir:
for i, seg in enumerate(segment_paths):
tmp_path = os.path.join(tmpdir, f"u_{i:02d}.mp4")
subprocess.run([
"ffmpeg", "-y", "-i", seg,
"-c:v", "libx264", "-crf", "20",
"-c:a", "aac", "-ar", "48000", "-ac", "2", "-b:a", "192k",import whisper
except ImportError:
print("Installing openai-whisper...")
subprocess.run([sys.executable, "-m", "pip", "install", "openai-whisper"],
check=True)
import whisperdef extract_audio_wav(video_path, output_path):
"""Extract audio as 16-bit PCM WAV for analysis."""
subprocess.run([
"ffmpeg", "-y",
"-i", video_path,
"-vn",if total_frames == 0:
print(f"Warning: No subtitle frames in {subtitle_frame_dir}, skipping overlay")
# Just copy
subprocess.run(["ffmpeg", "-y", "-i", video_path, "-c", "copy", output_path],
check=True)
returnwith tempfile.TemporaryDirectory() as tmpdir:
for i, seg in enumerate(segment_paths):
tmp_path = os.path.join(tmpdir, f"u_{i:02d}.mp4")
subprocess.run([
"ffmpeg", "-y", "-i", seg,
"-c:v", "libx264", "-crf", "20",
"-c:a", "aac", "-ar", "48000", "-ac", "2", "-b:a", "192k",for u in unified:
f.write(f"file '{u}'\n")
subprocess.run([
"ffmpeg", "-y",
"-f", "concat", "-safe", "0",
"-i", concat_path,VirusTotal findings are pending for this skill version.
No suspicious patterns detected.