ai-avatar-video

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). The skill instructs executing a remote installer via "curl ... | sh" (https://cli.inference.sh) and fetching/using unverified media URLs (including nonstandard placeholder domains like https://portrait.jpg), which are common vectors for distributing malicious shell scripts or binaries even if some links point to docs—so the overall package is suspicious and risky.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's CLI examples and workflows explicitly fetch and process arbitrary external URLs for images, audio, and video (e.g., the "image_url", "audio_url", and "video_url" fields in infsh app run commands like bytedance/omnihuman-1-5 and infsh/fast-whisper-large-v3), so it ingests untrusted public third-party content that could carry indirect prompt injection.