Skills
skills/inferencesh/agent-skills/ai-social-media-content/Gen Agent Trust Hub

ai-social-media-content

Fail

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [REMOTE_CODE_EXECUTION] (CRITICAL): The Quick Start section contains 'curl -fsSL https://cli.inference.sh | sh'. This pattern executes an unverified remote script directly in the shell, which is a classic attack vector for system compromise.
  • [EXTERNAL_DOWNLOADS] (HIGH): The skill utilizes 'npx skills add' to fetch and install additional skills from an untrusted third-party organization (inferencesh).
  • [COMMAND_EXECUTION] (MEDIUM): The skill's YAML frontmatter requests broad 'Bash(infsh *)' permissions, granting the agent the ability to execute any subcommand within the 'infsh' utility.
Recommendations
  • CRITICAL: Downloads and executes remote code from untrusted source(s): https://cli.inference.sh - DO NOT USE
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 16, 2026, 09:07 AM