audit-website

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). The set includes direct installer endpoints (an install script and an install.ps1) and explicit curl|bash and irm|iex install instructions—piping remote scripts to a shell/PowerShell from any non-verified/untrusted domain is a high-risk delivery method even if the site appears to be documentation; the other URLs are documentation/placeholders and lower risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly crawls and fetches live public websites and external links (e.g., "squirrel audit https://example.com", "Crawl: Discovers and fetches pages starting from the base URL" and "External Links: Checks external links for availability"), so the agent will ingest and interpret untrusted, user-generated web content as part of its workflow.