ditto-vc-diligence

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). The URLs are mostly API/documentation endpoints on a single custom domain (askditto.io), but the presence of a direct shell script (https://app.askditto.io/scripts/free-tier-auth.sh) and an explicit "curl | bash" instruction is a high-risk pattern for remote code execution and potential malware distribution unless you fully trust and audit the script and domain.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md workflow explicitly requires the agent to "research the startup" using "web research, the startup's website, pitch deck, and any public info" (Step 1) and the README even shows invoking the skill with an arbitrary public URL (e.g., "/ditto-vc-diligence "https://motorminds.ca\""), which means the agent will fetch and interpret untrusted third‑party web content that can change study design and subsequent actions.