case-study-writing

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). These URLs point to a domain serving an installer script (used with "curl | sh") from an unverified source — a high-risk pattern because it executes remote code without signature verification and could be used to distribute malware.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow (see "Quick Start" and "Research Support") explicitly instructs running infsh search apps (e.g., infsh app run tavily/search-assistant and infsh app run exa/search / exa/answer) to fetch public web/industry content that the agent is expected to read and use when composing case studies, exposing it to untrusted third‑party content that could carry indirect prompt injections.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill instructs users to run a runtime command that fetches and executes remote code via "curl -fsSL https://cli.inference.sh | sh" (https://cli.inference.sh), which is a required dependency to run subsequent infsh commands and therefore can execute remote code and control agent behavior.