librarian-tool

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 1.00). The URL is a direct link to a remote shell script on an unverified domain and the prompt explicitly suggests piping it to sh (curl | sh), which is a high-risk pattern for delivering malware or running unreviewed code.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's prerequisites include a direct install command that fetches and pipes remote code to a shell (curl -LsSf https://astral.sh/uv/install.sh | sh), which executes remote code and is required for running the tool.