compile-compcert

[Skill Scanner] Installation of third-party script detected All findings: [CRITICAL] command_injection: Installation of third-party script detected (SC006) [AITech 9.1.4] [CRITICAL] command_injection: Pipe-to-shell or eval pattern detected (CI013) [AITech 9.1.4] BENIGN: The fragment is a coherent, domain-appropriate build guide for CompCert. It details legitimate steps for dependency management, memory considerations, and build verification. No malicious data flows or credential handling are present; any flagged operational warnings (e.g., disabling opam sandboxing, avoiding swap in containers) are environmental best practices rather than harmful actions. Overall, the content aligns with its stated purpose as a build/install guide for a Coq-based verified compiler. LLM verification: This SKILL.md is a legitimate build guide for CompCert and its instructions are generally appropriate for that purpose. However, there are measurable supply-chain risks: recommending '--disable-sandboxing' for opam lowers defenses and the guide does not recommend verifying/pinning exact package sources or checksums. Those omissions make the workflow more vulnerable to malicious or compromised packages during apt-get/opam installs. Overall not malicious, but caution is warranted when following th