Skills
skills/parallel-web/parallel-agent-skills/setup/Gen Agent Trust Hub

setup

Fail

Audited by Gen Agent Trust Hub on Mar 3, 2026

Risk Level: HIGHREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The skill executes a remote shell script via curl -fsSL https://parallel.ai/install.sh | bash. This allows for arbitrary code execution from a source that is not verified or explicitly trusted.
  • [EXTERNAL_DOWNLOADS]: Installs the parallel-web-tools[cli] package from an external registry using pipx.
  • [COMMAND_EXECUTION]: The skill uses pipx ensurepath, which modifies shell configuration to add local bin directories to the PATH. It also requires execution of parallel-cli for authentication.
Recommendations
  • HIGH: Downloads and executes remote code from: https://parallel.ai/install.sh - DO NOT USE without thorough review
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Mar 3, 2026, 01:04 AM