chrono
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: CRITICALREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- REMOTE_CODE_EXECUTION (CRITICAL): The installation instructions in 'SKILL.md' include 'curl -sSL https://raw.githubusercontent.com/ChronoAIProject/chrono-cli/main/install.sh | sh'. This pattern fetches a script from an untrusted source and executes it directly in the system shell without prior user review, enabling a remote attacker to compromise the host system immediately. The repository 'ChronoAIProject' is not a trusted organization.
- COMMAND_EXECUTION (HIGH): The documented 'chrono' CLI tool performs sensitive operations such as authentication via Keycloak ('chrono login') and automated modification of AI editor configuration files ('chrono mcp-setup' on '.cursor/mcp.json'). If the tool or its installation script is compromised, these capabilities could be exploited to steal API keys or establish persistent unauthorized access within the developer environment.
- EXTERNAL_DOWNLOADS (MEDIUM): The skill relies on downloading and executing code from external, unverified sources ('raw.githubusercontent.com/ChronoAIProject') during the setup process, which is not included in the list of trusted external sources.
Recommendations
- HIGH: Downloads and executes remote code from: https://raw.githubusercontent.com/ChronoAIProject/chrono-cli/main/install.sh - DO NOT USE without thorough review
- AI detected serious security threats
Audit Metadata