parallel-web

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). Suspicious: this is a direct link to an install.sh script (intended to be run via curl | bash), which executes remote shell code from a single domain—an installation pattern commonly used to deliver malware unless the domain and script are explicitly verified and trusted.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to fetch and extract content from arbitrary public web pages and search results using parallel-cli (see references/web-extract.md and references/web-search.md), meaning untrusted third-party webpages and search excerpts are ingested and used to drive citations, synthesis, and follow-up actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill's Setup step explicitly runs a remote install script at runtime via "curl -fsSL https://parallel.ai/install.sh | bash", which fetches and executes remote code and is presented as the required installation path for the parallel-cli dependency.