press-release-writing

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). Yes — both domains are an unknown .sh host that provides a curl | sh install path (cli.inference.sh), a high‑risk pattern because it executes unverified remote shell code outside official package managers or vetted repositories.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly instructs using the inference.sh CLI to run external search apps (e.g., "infsh app run tavily/search-assistant" and "infsh app run exa/search"/"exa/answer") to fetch research and industry statistics from the open web, which are untrusted third‑party sources the agent is expected to read and interpret for fact‑checking.