Skills
skills/jeo-tech-ai/oh-my-gods/autoresearch/Gen Agent Trust Hub

autoresearch

Fail

Audited by Gen Agent Trust Hub on Mar 20, 2026

Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The set u p.sh scrip t an d SKIL L.md in st r u c t i o n s d o w n l o a d t h e u v p a c k a g e m a n a g e r i n s t a l l e r u s i n g `c u r l
  • L s S f h t t p s : / / a s t r a l.s h / u v / i n s t a l l.s h | s h`. T h i s f e t c h e s c o d e f r o m t h e o f f i c i a l d o m a i n o f a w e l l
  • k n o w n d e v e l o p e r t o o l p r o v i d e r.
  • **[R E M O T E _ C O D E _ E X E C U T I O N ] : * * T h e s k i l l f a c i l i t a t e s t h e c l o n i n g a n d s u b s e q u e n t e x e c u t i o n o f t h e a u t o r e s e a r c h f r a m e w o r k f r o m i t s o f f i c i a l G i t H u b r e p o s i t o r y ( h t t p s : / / g i t h u b . c o m / k a r p a t h y / a u t o r e s e a r c h ) .
      • [ C O M M A N D _ E X E C U T I O N ] : * * T h e f r a m e w o r k u s e s a n a u t o n o m o u s l o o p ( ` r u n
  • l o o p . s h ) t h a t c a l l s u v r u n t r a i n . p y ` t o e x e c u t e e x p e r i m e n t s . T h i s i n v o l v e s t h e e x e c u t i o n o f P y t h o n c o d e t h a t i s d y n a m i c a l l y m o d i f i e d b y t h e A I a g e n t b a s e d o n t h e r e s e a r c h c h a r t e r .
      • [ P R O M P T _ I N J E C T I O N ] : * * T h e s k i l l i s s u s c e p t i b l e t o i n d i r e c t p r o m p t i n j e c t i o n t h r o u g h t h e p r o g r a m . m d f i l e , w h i c h d e f i n e s t h e r e s e a r c h d i r e c t i v e s t h a t t h e a g e n t f o l l o w s .
      • I n g e s t i o n p o i n t s : * * T h e a g e n t r e a d s p r o g r a m . m d a t t h e s t a r t o f e v e r y i t e r a t i o n i n i t s a u t o n o m o u s l o o p t o f o r m u l a t e c o d e m o d i f i c a t i o n s .
      • B o u n d a r y m a r k e r s : * * N o e x p l i c i t d e l i m i t e r s o r i n s t r u c t i o n s a r e u s e d t o d i s t i n g u i s h r e s e a r c h d i r e c t i v e s f r o m p o t e n t i a l m a l i c i o u s i n s t r u c t i o n s w i t h i n t h e d a t a .
      • C a p a b i l i t y i n v e n t o r y : * * T h e a g e n t h a s h i g h
  • p r i v i l e g e c a p a b i l i t i e s i n c l u d i n g m o d i f y i n g t r a i n . p y a n d e x e c u t i n g a r b i t r a r y s h e l l c o m m a n d s v i a t h e u v r u n n e r .
      • S a n i t i z a t i o n : * * N o s a n i t i z a t i o n , v a l i d a t i o n , o r e s c a p i n g o f t h e r e s e a r c h d i r e c t i v e s i s p e r f o r m e d b e f o r e t h e y i n f l u e n c e t h e a g e n t ' s c o d e g e n e r a t i o n a n d e x e c u t i o n .
Recommendations
  • HIGH: Downloads and executes remote code from: https://astral.sh/uv/install.sh - DO NOT USE without thorough review
Audit Metadata
Risk Level
HIGH
Analyzed
Mar 20, 2026, 07:00 AM