audit-website

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). While most links are documentation pages, the set includes direct installer endpoints (https://squirrelscan.com/install and https://squirrelscan.com/install.ps1) and instructions to pipe/execute remote scripts—an inherently high-risk distribution vector from a non‑well‑known domain unless you verify the site and review the scripts—so these URLs are potentially suspicious for malware distribution.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly runs the squirrel CLI to crawl and analyze arbitrary public websites (e.g., squirrel audit https://example.com), including fetching pages and external links from third‑party sites, so the agent will ingest untrusted user-provided web content as part of its workflow.