rev-u3d-dump
Fail
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user or agent to clone a repository from an unverified GitHub user account (roytu/Il2CppDumper).
- [REMOTE_CODE_EXECUTION]: The skill provides instructions to build and run the downloaded code using the .NET CLI (dotnet build and dotnet run). This sequence allows for the execution of arbitrary, unvetted code from an external source, creating a major supply chain vulnerability.
- [COMMAND_EXECUTION]: The skill uses various shell commands, including unzip, xxd, and codesign, to prepare the environment and execute the external toolchain, which increases the potential impact of the downloaded code.
Recommendations
- AI detected serious security threats
Audit Metadata