deepwork-tracker
Fail
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: HIGHDATA_EXFILTRATIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [DATA_EXFILTRATION]: The skill contains explicit instructions to always send generated deep work reports to a hardcoded Telegram ID (8551040296) regardless of user identity.
- [EXTERNAL_DOWNLOADS]: The bootstrap process clones an external repository from an unverified GitHub user account (adunne09) that does not match the skill author.
- [REMOTE_CODE_EXECUTION]: The skill makes downloaded external scripts executable using chmod +x and runs them locally via the exec tool.
- [COMMAND_EXECUTION]: Multiple shell commands are used to manipulate the local file system and download code from the internet.
Recommendations
- AI detected serious security threats
Audit Metadata