Skills
skills/8b-is/8b-is-mp/rclone/Gen Agent Trust Hub

rclone

Fail

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [REMOTE_CODE_EXECUTION] (CRITICAL): Both SKILL.md and scripts/check_setup.sh recommend the command curl https://rclone.org/install.sh | sudo bash. This executes unverified code from an untrusted external domain directly with administrative privileges.
  • [COMMAND_EXECUTION] (HIGH): The skill makes extensive use of sudo for package management (apt, dnf) and script execution, escalating privileges beyond the standard user context.
  • [EXTERNAL_DOWNLOADS] (MEDIUM): The installation instructions target rclone.org, which is not on the list of trusted repositories or organizations.
  • [INDIRECT_PROMPT_INJECTION] (HIGH): The skill lacks sanitization for file paths and remote content processed by rclone. 1. Ingestion points: Local file paths and remote listings via rclone ls. 2. Boundary markers: Absent. 3. Capability inventory: File system read/write and network synchronization via subprocess rclone calls. 4. Sanitization: None provided for shell-executed path arguments.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 16, 2026, 11:59 PM