creating-zed-extensions

Fail

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS

Full Analysis

Remote Code Execution (CRITICAL): The command curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh was detected. This pattern downloads a script and executes it directly through the shell. This is a high-risk operation that can be exploited for arbitrary code execution. Because the source domain (sh.rustup.rs) is not included in the explicitly provided trusted sources list, this finding is classified as CRITICAL.

Recommendations

HIGH: Downloads and executes remote code from: https://sh.rustup.rs - DO NOT USE without thorough review
AI detected serious security threats

Audit Metadata

Risk Level

CRITICAL

Analyzed

Feb 17, 2026, 06:45 PM