test-pure-skill

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). This is a direct raw.githubusercontent.com link to an install.sh shell script (used with curl | sh), which is inherently high-risk because executing remote scripts without inspection can deliver malware even if hosted on GitHub; verify the repository owner and inspect/sign the script before running.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill's pre-flight step instructs running curl -sSL https://raw.githubusercontent.com/okx/onchainos-skills/main/install.sh | sh which fetches and executes remote code (installing the onchainos CLI) that the skill relies on at runtime, creating a direct code-execution dependency.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (medium risk: 0.60). The prompt instructs running a remote install script via "curl ... | sh", which directs the agent/user to execute a downloaded installer that can modify the host system (even if it doesn't explicitly request sudo), so it can compromise machine state.