bg-jobs

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). The link is a direct .zip download from a non-official/unknown host (example.com used as a placeholder) and archives can contain executables or scripts, so this is potentially unsafe/untrusted and should be treated as suspicious.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill lets the agent run arbitrary shell commands that fetch external, public content (e.g., the example "bg run "curl -O https://example.com/large_file.zip\"") and then explicitly reads job stdout/stderr via "bg read"/"bg logs" and the workflow, so untrusted third-party content could be ingested and influence subsequent actions.