search

[Skill Scanner] Natural language instruction to download and install from URL detected All findings: [CRITICAL] command_injection: Natural language instruction to download and install from URL detected (CI009) [AITech 9.1.4] [CRITICAL] command_injection: Natural language instruction to download and install from URL detected (CI009) [AITech 9.1.4] No evidence of malware or deliberate sabotage in the provided documentation. The integration legitimately requires Bright Data credentials and routes queries through Bright Data's API; that design is consistent with the stated purpose but carries an expected third-party trust and privacy risk because search queries and the API key are sent to Bright Data. Review the actual scripts to ensure TLS is used, the API key is not logged, and no additional unexpected endpoints are contacted.