Skills
skills/inference-sh-4/skills/landing-page-design/Gen Agent Trust Hub

landing-page-design

Fail

Audited by Gen Agent Trust Hub on Feb 18, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • Remote Code Execution (CRITICAL): The pattern curl -fsSL https://cli.inference.sh | sh was detected. This is a highly dangerous operation that pipes remote content directly into a command shell without any verification or sanitization.
  • External Downloads (HIGH): The skill attempts to fetch data from cli.inference.sh. This domain is not part of the trusted developer or organization list, making the content of the download unverifiable and potentially malicious.
  • Command Execution (HIGH): By invoking the shell (sh) on network-retrieved data, the skill grants the remote server full control over the execution environment, which could lead to data theft, system compromise, or malware installation.
Recommendations
  • HIGH: Downloads and executes remote code from: https://cli.inference.sh - DO NOT USE without thorough review
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 18, 2026, 11:19 PM