ai-avatar-video

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). These links largely point to a single third‑party service (inference.sh) and include an explicit "curl https://cli.inference.sh | sh" install command plus direct file-hosting URLs and ambiguous example domains (e.g., https://portrait.jpg, https://speech.mp3) — executing a remote shell script or fetching unknown hosted files from an untrusted source is a high-risk distribution vector for malware.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill accepts and processes arbitrary external URLs (e.g., the infsh app run examples with "image_url", "audio_url", and "video_url" such as "https://portrait.jpg" and "https://speech.mp3"), which clearly fetches and ingests untrusted third‑party content that the agent will read/interpret as part of its workflow.