skills/mukul975/anthropic-cybersecurity-skills/detecting-serverless-function-injection/Snyk

detecting-serverless-function-injection

Fail

Audited by Snyk on Apr 20, 2026

Risk Level: CRITICAL

Full Analysis

CRITICAL E005: Suspicious download URL detected in skill instructions.

Suspicious download URL detected (high risk: 1.00). Both URLs are hosted on an attacker-controlled domain — one is a direct shell script download (http://attacker.com/shell.sh) and the other is an exfiltration endpoint (http://attacker.com/exfil?data=$) — indicating a high likelihood of malicious code delivery and data exfiltration.

Issues (1)

E005

CRITICAL

Suspicious download URL detected in skill instructions.

Audit Metadata

Risk Level

CRITICAL

Analyzed

Apr 20, 2026, 11:04 PM

Issues

1