The Agent Skills Directory

[REMOTE_CODE_EXECUTION]: The skill documentation repeatedly encourages users to use the '--trust-remote-code' flag (specifically in 'SKILL.md' and 'references/troubleshooting.md') to resolve model loading errors. This flag permits the vLLM engine to execute arbitrary Python code included in a model's configuration or weight files downloaded from remote repositories. This behavior introduces a significant risk of Remote Code Execution (RCE) if a user is directed to load a malicious model from an untrusted or compromised source.
[COMMAND_EXECUTION]: Multiple files contain shell commands for system-level configuration. For example, 'references/troubleshooting.md' suggests using 'sudo ufw allow 8000' to modify system firewall rules. Additionally, the skill provides instructions for multi-node distributed serving which involves complex network configurations and environment variable manipulation that could be misused if executed without oversight.
[EXTERNAL_DOWNLOADS]: The documentation instructs the user to install several third-party Python packages, such as 'locust', 'autoawq', 'auto-gptq', and 'flash-attn', which are not part of the standard library or from explicitly trusted vendors. While it references well-known services like Hugging Face for model downloads, it lacks guidance on verifying the integrity or provenance of the specific third-party assets it recommends installing via pip.

serving-llms-vllm