endor-setup

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill explicitly performs runtime fetches from https://docs.endorlabs.com/endorctl/commands/scan/ to extract flags that directly control which CLI commands are run, and it also downloads and executes binaries from https://api.endorlabs.com/download/... (with checksums from https://api.endorlabs.com/sha/...), so these external URLs are runtime dependencies that directly control agent behavior and execute code.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (medium risk: 0.60). The skill directs the agent to automatically download, verify, install and execute a remote binary and alter the environment (PATH) without user confirmation—actions that modify the machine's state and can lead to compromise even though it doesn't request sudo or create users.