dokploy-docs

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 1.00). Yes — piping a remote shell script (https://dokploy.com/install.sh) from an external/unverified domain is a high-risk delivery vector for malware, and although http://your-server-ip:3000 is just a local admin UI endpoint, it could serve malicious content if the installed software or installer is compromised.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The documentation explicitly instructs running remote install scripts at runtime (e.g., curl -sSL https://dokploy.com/install.sh | sh and curl -sSL https://get.docker.com | sh), which fetch and execute remote shell code that the installation relies on, so these URLs are high-risk.