tapestry

[Skill Scanner] Installation of third-party script detected All findings: [CRITICAL] command_injection: Installation of third-party script detected (SC006) [AITech 9.1.4] [CRITICAL] command_injection: Installation of third-party script detected (SC006) [AITech 9.1.4] [CRITICAL] command_injection: Installation of third-party script detected (SC006) [AITech 9.1.4] [CRITICAL] command_injection: Installation of third-party script detected (SC006) [AITech 9.1.4] This skill is coherent and consistent with its stated purpose: detecting URL type, extracting content with appropriate tools, and creating a local action plan. It does not request credentials, use third-party proxy endpoints, or contain obfuscated/exfiltration code. Primary risks are operational: auto-installing tools (brew/apt), processing untrusted content (PDF/HTML/subtitles) which relies on external parsers that could contain vulnerabilities, and an interactive prompt that may block automation. Overall, I assess the module as functionally benign for its purpose but carrying normal risks associated with downloading and parsing arbitrary external content; operators should run it in a trusted/sandboxed environment and ensure third-party tools are up to date. LLM verification: This AI agent skill's behavior is consistent with its stated purpose (detect URL type and extract content). It does not contain obvious obfuscated or clearly malicious code. However, it executes external tools, downloads arbitrary URLs, runs inline Python on fetched content, and installs packages at runtime via system package managers without integrity checks — these actions raise supply-chain and execution risks. Recommend treating this skill as potentially unsafe to run in sensitive or privile