pi/pi-skills
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5d5d0e2d26ed349d48bba278216a19c9d68d5be6
pi-skills/caveman-compress/SECURITY.md
alex wiesner 5d5d0e2d26 updates
2026-04-12 06:47:14 +01:00

1.5 KiB
Raw Blame History

Security

Snyk High Risk Rating

caveman-compress receives a Snyk High Risk rating due to static analysis heuristics. This document explains what the skill does and does not do.

What triggers the rating

  1. subprocess usage: The skill calls the claude CLI via subprocess.run() as a fallback when ANTHROPIC_API_KEY is not set. The subprocess call uses a fixed argument list — no shell interpolation occurs. User file content is passed via stdin, not as a shell argument.

  2. File read/write: The skill reads the file the user explicitly points it at, compresses it, and writes the result back to the same path. A .original.md backup is saved alongside it. No files outside the user-specified path are read or written.

What the skill does NOT do

  • Does not execute user file content as code
  • Does not make network requests except to Anthropic's API (via SDK or CLI)
  • Does not access files outside the path the user provides
  • Does not use shell=True or string interpolation in subprocess calls
  • Does not collect or transmit any data beyond the file being compressed

Auth behavior

If ANTHROPIC_API_KEY is set, the skill uses the Anthropic Python SDK directly (no subprocess). If not set, it falls back to the claude CLI, which uses the user's existing Claude desktop authentication.

File size limit

Files larger than 500KB are rejected before any API call is made.

Reporting a vulnerability

If you believe you've found a genuine security issue, please open a GitHub issue with the label security.

Reference in New Issue View Git Blame Copy Permalink