freeUnlimited-websearch

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.85). This is suspicious: it points to a GitHub repo under an arbitrary/unknown username (placeholder YOUR_USERNAME) that would be cloned and run locally as a skill—untrusted repos and scripts executed on your system can contain malware or backdoors unless the maintainer is verified.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's search.py uses the ddgs DuckDuckGo client to fetch live web search results (titles/hrefs/bodies) from the open internet, and SKILL.md states the skill is invoked to search the web, so untrusted third‑party page content could be ingested and influence agent behavior.