The Agent Skills Directory

REMOTE_CODE_EXECUTION (CRITICAL): The skill's 'Quick Start' section documentation instructs users to run curl -fsSL https://cli.inference.sh | sh. This pattern is extremely dangerous as it executes remote scripts directly in the shell without any verification or source integrity checks, originating from a domain not listed in the trusted sources. \n- EXTERNAL_DOWNLOADS (MEDIUM): The skill encourages the installation of additional skills from the inference-sh/skills registry using npx skills add, which facilitates the download and execution of unverified third-party code. \n- COMMAND_EXECUTION (LOW): The skill requests access to the Bash tool to execute infsh commands, providing the agent with the ability to interact with the underlying system. \n- PROMPT_INJECTION (LOW): The skill presents an indirect prompt injection surface. 1. Ingestion points: image_url parameters in tool calls. 2. Boundary markers: Absent. 3. Capability inventory: Shell command execution via infsh. 4. Sanitization: Absent. Malicious data returned from processed external images could potentially influence subsequent agent actions.

image-upscaling