seo-content-brief
Fail
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- Remote Code Execution (CRITICAL): The skill contains the pattern
curl -fsSL https://cli.inference.sh | sh. Piped execution of remote scripts is a high-risk security vulnerability that allows an untrusted remote server to execute arbitrary commands with the privileges of the agent. - External Downloads (HIGH): The skill attempts to fetch and execute resources from
cli.inference.sh, which is not a recognized trusted domain. This presents a high risk of supply chain compromise. - Indirect Prompt Injection (LOW): The skill is vulnerable to indirect prompt injection due to its processing of untrusted web data. Evidence Chain: 1. Ingestion points: SERP analysis and keyword research (as described in description_en.txt). 2. Boundary markers: None identified in the provided files. 3. Capability inventory: Shell command execution (
sh). 4. Sanitization: None identified. This configuration allows malicious content within search results to potentially influence the agent's command execution.
Recommendations
- HIGH: Downloads and executes remote code from: https://cli.inference.sh - DO NOT USE without thorough review
- AI detected serious security threats
Audit Metadata