deploy
Fail
Audited by Snyk on Mar 5, 2026
Risk Level: CRITICAL
Full Analysis
CRITICAL E005: Suspicious download URL detected in skill instructions.
- Suspicious download URL detected (high risk: 1.00). The URL is a direct raw .sh script from an individual GitHub user (unknown account) meant to be piped to bash — executing remote shell scripts from unvetted/personal repositories is high-risk because it can run arbitrary/malicious commands on the server.
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 1.00). The SKILL.md "Complete Reinstall" step instructs running "curl -fsSL https://raw.githubusercontent.com/FelixWayne0318/AItrader/main/reinstall.sh | bash", which fetches and executes a public, user-controlled GitHub raw script (untrusted third-party content) that can directly change behavior and system actions.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 1.00). The skill contains a runtime command that downloads and immediately executes a remote shell script (curl -fsSL https://raw.githubusercontent.com/FelixWayne0318/AItrader/main/reinstall.sh | bash), which executes external code and is presented as the required "Complete Reinstall" step.
MEDIUM W013: Attempt to modify system services in skill instructions.
- Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill instructs modifying and managing systemd service configuration, running sudo systemctl commands, and executing a remote reinstall script (curl | bash), all of which require elevated privileges and can change the machine's state.
Audit Metadata