Skills
skills/davila7/claude-code-templates/busybox-on-windows/Gen Agent Trust Hub

busybox-on-windows

Fail

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS] (HIGH): The skill provides instructions to download executable files (busybox.exe and variants) from 'https://frippery.org/files/busybox/', which is not a recognized trusted source per security guidelines.
  • [REMOTE_CODE_EXECUTION] (HIGH): The skill follows a high-risk pattern of downloading an external binary and immediately guiding the agent to execute it, facilitating the potential execution of malicious code from an unverified source.
  • [COMMAND_EXECUTION] (HIGH): The skill utilizes PowerShell commands to perform system discovery and fetch files, and encourages the execution of an external binary that can run arbitrary shell commands on the host machine.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 17, 2026, 05:10 PM