Back to skill

Security audit

Wjs Burning Subtitles

Security checks across malware telemetry and agentic risk

Overview

This subtitle tool does what it says, but it may automatically download and run an unverified ffmpeg executable from the internet.

Review before installing. This skill is most appropriate if you are comfortable with a helper script that can fetch and run ffmpeg from evermeet.cx. Safer use is to install a trusted libass-enabled ffmpeg yourself, remove or avoid /tmp/ff_bin/ffmpeg unless you trust it, and only render files and output paths you explicitly choose.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Context-Inappropriate Capability

Medium
Confidence
98% confidence
Finding
The script automatically downloads an ffmpeg binary from the internet into `/tmp` and executes it, creating a supply-chain and arbitrary-code-execution risk if the remote source, transport, local temp path, or extracted artifact is compromised. This is especially dangerous because ffmpeg is a native executable run on the user's machine, and the behavior happens implicitly during normal subtitle rendering.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
Silently replacing a local dependency with a downloaded executable without explicit user approval weakens user control and increases the chance of executing untrusted native code. In a local media-processing skill, this context makes the issue more dangerous because users reasonably expect offline processing of their media, not hidden remote binary acquisition and execution.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.