mise-expert
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: CRITICALREMOTE_CODE_EXECUTION
Full Analysis
- Remote Code Execution (CRITICAL): The skill executes a remote script directly using a shell pipe.
- Evidence: The automated scan detected
curl https://mise.run | sh. - Risk: Piped execution (
curl | sh) is an extremely dangerous pattern as it executes remote code without any integrity checks or verification. If the domain or the transport layer is compromised, an attacker can execute arbitrary commands with the privileges of the agent process. - Source Status:
https://mise.runis not among the defined Trusted Organizations or Repositories, necessitating the highest severity classification.
Recommendations
- HIGH: Downloads and executes remote code from: https://mise.run - DO NOT USE without thorough review
- AI detected serious security threats
Audit Metadata