Context-Inappropriate Capability
Medium
- Confidence
- 90% confidence
- Finding
- The script invokes external programs from PATH, including git, plutil, python, and a shell-capable helper via runShell. Even though runShell is not used here, resolving and executing binaries from an attacker-controlled PATH can lead to arbitrary code execution if the audit is run in an untrusted environment or repository setup.
