Context-Inappropriate Capability
High
- Confidence
- 99% confidence
- Finding
- The script uses child_process.exec to build shell commands from untrusted values taken from CLI arguments and JSON fields such as senderAccount, recipient.account, transfer.contract, transfer.receiver, and transfer.token_id. Because exec invokes a shell, crafted input can break out of the intended NEAR command and execute arbitrary OS commands on the host running the skill.
