proxy-networking
Fail
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: HIGHREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill downloads and executes an external shell script from 'https://raw.githubusercontent.com/mack-a/v2ray-agent/master/install.sh' using root privileges. The source is a personal GitHub repository and does not belong to a recognized trusted organization or well-known technology provider.
- [DATA_EXFILTRATION]: The skill provides specific commands and patterns to locate and extract sensitive credentials, including private keys and UUIDs, from remote configuration files. These credentials are subsequently used to generate VLESS share links, which are treated as sensitive data.
- [COMMAND_EXECUTION]: The skill performs high-risk administrative operations on remote hosts via SSH, including the modification of kernel parameters (sysctl), firewall rules (iptables), and the management of system-level services as the root user.
- [EXTERNAL_DOWNLOADS]: The skill automates the downloading of external scripts via 'wget' with SSL certificate verification disabled ('--no-check-certificate') and manages the installation of several system packages using 'apt-get'.
Recommendations
- AI detected serious security threats
Audit Metadata