Skills
skills/inference-sh-4/skills/newsletter-curation/Gen Agent Trust Hub

newsletter-curation

Fail

Audited by Gen Agent Trust Hub on Feb 18, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • Unverifiable Dependencies & Remote Code Execution (CRITICAL): The skill instructs the user to run 'curl -fsSL https://cli.inference.sh | sh'. This pattern executes a remote script with the current user's privileges without any integrity verification or sandboxing. This is a classic remote code execution (RCE) vector.
  • Indirect Prompt Injection (LOW): The skill ingests untrusted data from external search tools, which could contain malicious instructions. * Ingestion points: tavily/search-assistant and exa/search output. * Boundary markers: Absent in the markdown templates. * Capability inventory: infsh login, infsh app run, and x/post-create. * Sanitization: No sanitization or escaping is performed on the ingested content before use.
Recommendations
  • HIGH: Downloads and executes remote code from: https://cli.inference.sh - DO NOT USE without thorough review
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 18, 2026, 11:12 PM