unrestricted-file-upload-anti-pattern

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.70). Most of the URLs are reputable documentation or source-code references (OWASP, MITRE, PortSwigger, GitHub) and not direct installers, but the http://your-app.com/uploads/shell.php?cmd=... entry is a clear web‑shell/exploited upload (HTTP, executable server script) and represents a high‑risk vector for remote code execution and malware distribution.