Skills
skills/inferencesh/skills/og-image-design/Gen Agent Trust Hub

og-image-design

Fail

Audited by Gen Agent Trust Hub on Feb 18, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • Remote Code Execution (CRITICAL): The automated scan detected a piped shell command: 'curl -fsSL https://cli.inference.sh | sh'. This pattern allows an unverified remote script to execute arbitrary commands with the privileges of the current user.
  • External Downloads (HIGH): The skill attempts to download content from 'cli.inference.sh', which is not a trusted source according to the security policy.
  • Command Execution (HIGH): The use of 'sh' to process remote network data is a high-risk activity that bypasses standard security reviews and integrity checks.
Recommendations
  • HIGH: Downloads and executes remote code from: https://cli.inference.sh - DO NOT USE without thorough review
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 18, 2026, 01:31 AM