agent-mail

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). The presence of a direct raw.githubusercontent.com link to an install.sh from a single, unvetted GitHub user (the prompt explicitly recommends piping it to bash) is a high-risk distribution vector for malware; the 127.0.0.1:8765 URLs themselves are local web UI endpoints (not downloads) and are only relevant after running the installer, so the main risk comes from the remote shell script.