azure-functions
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: CRITICALREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- Remote Code Execution (CRITICAL): The skill uses the highly dangerous pattern
curl https://aka.ms/install-artifacts-ubuntu.sh | bash. This allows unverified remote code to be executed directly on the host system without opportunity for inspection. - External Downloads (CRITICAL): The script is downloaded from
https://aka.ms/install-artifacts-ubuntu.sh. This domain is not included in the trusted GitHub organizations or repositories whitelist, and combined with piped execution, it is treated as a critical security risk.
Recommendations
- HIGH: Downloads and executes remote code from: https://aka.ms/install-artifacts-ubuntu.sh - DO NOT USE without thorough review
- AI detected serious security threats
Audit Metadata