abc-git-flow

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). These links are direct .sh/.bat installer downloads hosted on company-specific CDN/OSS domains rather than a trusted package manager or well-known vendor site, and the skill advises piping to a shell / executing the batch file—behaviors that are high-risk for malware delivery if the source is not independently verified.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill instructs running remote install scripts with sudo (e.g., "sudo curl ... | sh" and system installer commands), which encourages elevating privileges and executing untrusted code that can modify the machine state.