hetzner-server
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: HIGHREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [REMOTE_CODE_EXECUTION] (HIGH): The skill explicitly instructs the user (or agent) to execute a remote script via
curl -fsSL https://raw.githubusercontent.com/connorads/dotfiles/master/install.sh | bash. This executes code from an untrusted personal repository directly in the shell, which could lead to full system compromise. - [COMMAND_EXECUTION] (LOW): The skill performs legitimate but sensitive system operations including modifying
/etc/fstab, managing swap files, and manipulating SSH configurations (~/.ssh/configandknown_hosts). These are consistent with server management but require caution. - [EXTERNAL_DOWNLOADS] (MEDIUM): The skill references external dependencies and scripts from non-whitelisted sources. While GitHub is a common host, the specific account (
connorads) is not a recognized trusted organization. - [DATA_EXPOSURE] (LOW): The skill reads and uploads local SSH public keys (
~/.ssh/id_ed25519.pub). While necessary for its primary purpose, this involves handling sensitive identity data.
Recommendations
- HIGH: Downloads and executes remote code from: https://raw.githubusercontent.com/connorads/dotfiles/master/install.sh - DO NOT USE without thorough review
- AI detected serious security threats
Audit Metadata