ai-voice-cloning

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). The presence of a direct "curl -fsSL https://cli.inference.sh | sh" install command from an unverified domain (inference.sh/cli.inference.sh) is a high-risk pattern for remote code execution and malware distribution; the other URLs look like placeholder media or cloud-hosted assets (which are lower risk individually) but could be used as lures or to host malicious payloads, so the overall source should be treated as suspicious unless the domain and script are verified.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly accepts and fetches arbitrary external URLs (e.g., media-merger "audio_files" URLs, "video_url" in the Voice + Video Workflow, and "image_url" in the Create Talking Head example) and runs a curl installer from https://cli.inference.sh, so it clearly ingests untrusted public third‑party media/content at runtime that could contain user-generated or adversarial data.