Skills
skills/cameronapak/bknd-skills/bknd-database-provision/Gen Agent Trust Hub

bknd-database-provision

Fail

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • REMOTE_CODE_EXECUTION (CRITICAL): The automated scan identified the command 'curl -sSfL https://get.tur.so/install.sh | bash'. Piped execution of remote scripts is a critical vulnerability that allows an external server to execute arbitrary commands.
  • EXTERNAL_DOWNLOADS (HIGH): The script is fetched from 'get.tur.so', which is not listed as a trusted GitHub organization or pre-approved source, increasing the risk of supply-chain compromise.
Recommendations
  • HIGH: Downloads and executes remote code from: https://get.tur.so/install.sh - DO NOT USE without thorough review
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 17, 2026, 06:24 PM