Skills
skills/neversight/skills_feed/character-design-sheet/Gen Agent Trust Hub

character-design-sheet

Fail

Audited by Gen Agent Trust Hub on Feb 21, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • Remote Code Execution (CRITICAL): The skill includes a command that pipes a remote script directly into a shell for execution. Evidence: curl -fsSL https://cli.inference.sh | sh. This is a critical vulnerability that allows the remote server to execute arbitrary commands on the host system without verification.
  • External Downloads (HIGH): The skill initiates connections to cli.inference.sh, which is not a trusted domain according to the security protocols. This creates a significant supply chain risk where malicious code can be injected during the download process.
Recommendations
  • HIGH: Downloads and executes remote code from: https://cli.inference.sh - DO NOT USE without thorough review
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 21, 2026, 04:56 PM