Skills
NYC
skills/dicklesworthstone/agent_flywheel_clawdbot_skills_and_integrations/caam/Gen Agent Trust Hub

caam

Fail

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [Unverifiable Dependencies & Remote Code Execution] (CRITICAL): The skill utilizes a dangerous execution pattern involving downloading a script and piping it directly to a shell interpreter. Evidence: curl -fsSL "https://raw.githubusercontent.com/Dicklesworthstone/coding_agent_account_manager/main/install.sh?$(date" | bash. The GitHub account 'Dicklesworthstone' is not part of the trusted organizations list, meaning the script's contents are unverified and potentially malicious. This bypasses all security reviews and provides the remote script with the same privileges as the user running the agent.
Recommendations
  • HIGH: Downloads and executes remote code from: https://raw.githubusercontent.com/Dicklesworthstone/coding_agent_account_manager/main/install.sh?$(date - DO NOT USE without thorough review
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 17, 2026, 05:46 PM