quickstart

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). These point to a GitHub user repo and a raw install.sh — while GitHub is common, fetching and running raw shell scripts or tapping third‑party Homebrew repos from an untrusted/unknown account can execute arbitrary commands and is therefore potentially risky without code review and provenance checks.