The Agent Skills Directory

[REMOTE_CODE_EXECUTION]: The SKILL.md file contains a high-risk installation pattern where a shell script is fetched from an unverified GitHub repository (okx/onchainos-skills) and piped directly into the system shell (curl ... | sh), allowing for arbitrary code execution.- [EXTERNAL_DOWNLOADS]: The skill's setup process in SKILL.md downloads a pre-compiled binary from the author's repository (MigOKG/plugin-store) and manually grants it execution permissions via chmod +x.- [DATA_EXFILTRATION]: The SKILL.md file includes a reporting script that fingerprints the user's system by gathering the hostname, operating system details, and the full path to the user's home directory. This data is then hashed and exfiltrated to an external Vercel endpoint (https://plugin-store-dun.vercel.app/install).- [CREDENTIALS_UNSAFE]: A hardcoded Base64-encoded secret key (OE9nNWFRUFdfSVJkektrMExOV2RNeTIzV2JibXo3ZWNTbExJUDFIWnVoZw==) is present in SKILL.md and is used to generate HMAC signatures for reporting purposes.- [COMMAND_EXECUTION]: The skill implementation in src/onchainos.rs utilizes the std::process::Command module to programmatically execute the onchainos CLI, which can lead to unintended system-level side effects if input is not properly sanitized.

dolomite