autoteam-f-chatgpt-team-rotation

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). High risk — this tool is explicitly designed to automate mass creation and rotation of ChatGPT accounts (evading quotas/bans) and to collect, store, export and sync OAuth/auth credentials (including master OpenAI creds) to local files and external CLIProxyAPI endpoints, enabling credential exfiltration, remote control of accounts, and large-scale abuse of the OpenAI service.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly uses Playwright to browse and automate interactions with public web pages (e.g., OpenAI registration/OAuth flows) and ingests emails from external mail providers like cf_temp_email/maillab (specified in the .env and Mail Provider Notes), which the agent parses to extract tokens/links that directly drive account creation and OAuth decisions.