product-photography
Fail
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [REMOTE_CODE_EXECUTION] (CRITICAL): A command pattern was detected that downloads a script from the internet and pipes it directly into the shell for execution (
curl -fsSL https://cli.inference.sh | sh). This allows the remote server to execute arbitrary commands with the privileges of the agent, posing an extreme security risk. - [EXTERNAL_DOWNLOADS] (HIGH): The skill attempts to download resources from
cli.inference.sh. This domain is not included in the list of trusted external sources, and downloading executable content from untrusted domains is a high-risk activity that could lead to system compromise.
Recommendations
- HIGH: Downloads and executes remote code from: https://cli.inference.sh - DO NOT USE without thorough review
- AI detected serious security threats
Audit Metadata