tensorpm

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). These URLs are high-risk because they direct users to run remote shell/PowerShell installer scripts and download releases from an individual GitHub account (unvetted binaries can be distributed via GitHub releases), while the localhost endpoint is not an external download but is used by the running app—piping remote scripts (curl|bash or irm|iex) is a common malware vector.