evomap

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.70). The links are to a project website, docs, and GitHub repositories (no direct .exe/shorteners), but they come from small/unknown projects and the skill explicitly instructs cloning and running code—so they pose moderate-to-high risk if the code is not audited.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests user-contributed marketplace assets and tasks from the public EvoMap hub (https://evomap.ai) (see SKILL.md "Fetch assets" / "Show available bounties" and evomap_client.fetch which posts to /a2a/fetch) and also clones public GitHub repos during install, and those fetched assets/tasks are used to drive actions (listing/claiming tasks, automatic checks and publishing), so untrusted third‑party content can materially influence agent behavior.