install-script-generator

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). They are raw GitHub URLs pointing to .sh installers (one is an invalid root URL) from unspecified/unknown repositories — raw .sh files executed via curl|bash are a common high‑risk vector because they can run arbitrary commands on the host.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (medium risk: 0.60). This skill instructs the agent to generate and modify repository files and produce install scripts that run package-manager commands and invoke sudo to install dependencies, so it encourages privileged, state-changing operations on the host (though it does not ask to bypass security or create users).