customer-persona
Fail
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- Remote Code Execution (CRITICAL): The skill uses a highly dangerous pattern to download and execute code from the internet. Evidence:
curl -fsSL https://cli.inference.sh | sh. This method bypasses local inspection and allows the remote server to execute any command with the user's current privileges. - External Downloads (HIGH): The URL
https://cli.inference.shis not a recognized trusted source. Downloads from untrusted domains can lead to malware installation or system compromise via supply chain attacks.
Recommendations
- HIGH: Downloads and executes remote code from: https://cli.inference.sh - DO NOT USE without thorough review
- AI detected serious security threats
Audit Metadata