flux-image

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). These URLs point to an unfamiliar third‑party domain (inference.sh / cli.inference.sh) that instructs users to run a remote shell installer via "curl ... | sh" and includes direct file hosting links — a common and risky malware distribution pattern even if the site may be legitimate.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's examples show the agent accepting and fetching arbitrary external URLs (e.g., the "image_url": "https://your-image.jpg" and instructions to add a "lora_url" for custom styles) so it will ingest untrusted public content that could carry indirect prompt-injection.