freshworks-fdk-setup-skill
Fail
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: HIGHCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill is designed to perform multi-step technical operations autonomously by spawning specialized subagents. Instructions explicitly direct the agent to skip user confirmation before initiating these shell-based tasks.\n- [REMOTE_CODE_EXECUTION]: Downloads and executes the official Node Version Manager (nvm) installation script from the well-known nvm-sh repository on GitHub.\n- [EXTERNAL_DOWNLOADS]: Fetches FDK distribution packages directly from the vendor's content delivery network at cdn.freshdev.io.\n- [COMMAND_EXECUTION]: Modifies system shell configuration files such as .zshrc and .bash_profile to establish persistent environment variables and command aliases required for the FDK environment.\n- [COMMAND_EXECUTION]: Employs commands that require elevated privileges, including 'sudo' on macOS and Administrator prompts on Windows, to perform global software installations.\n- [PROMPT_INJECTION]: The 'downgrade' operation accepts user-provided version strings and interpolates them directly into shell commands and download URLs without performing input validation or sanitization.\n
- Ingestion points: $ARGUMENTS in SKILL.md\n
- Boundary markers: None identified\n
- Capability inventory: Autonomous shell command execution via the Task tool\n
- Sanitization: No validation of the version argument before it is used in command strings
Recommendations
- HIGH: Downloads and executes remote code from: https://raw.githubusercontent.com/nvm-sh/nvm/v0.40.1/install.sh - DO NOT USE without thorough review
Audit Metadata