mac-setup
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- Remote Code Execution (HIGH): The automated scan detected a pattern where a binary is downloaded from an external, untrusted URL and executed directly on the system.
- Evidence:
curl -fL https://app.getambassador.io/download/tel2oss/releases/download/v2.18.0/telepresence-darwin-arm64downloaded to/usr/local/bin/telepresence. - Risk: The domain
app.getambassador.iois not a trusted source per defined security protocols. Downloading and executing unverified binaries is a high-risk activity that can result in total system compromise. - Command Execution (HIGH): The operation involves writing a binary to a sensitive system directory (
/usr/local/bin/), which often requires elevated permissions and indicates persistent system modification. - External Downloads (MEDIUM): The skill fetches content from a non-whitelisted external domain without integrity verification (e.g., checksum validation).
Recommendations
- CRITICAL: Downloads and executes remote code from untrusted source(s): https://app.getambassador.io/download/tel2oss/releases/download/v2.18.0/telepresence-darwin-arm64 - DO NOT USE
- AI detected serious security threats
Audit Metadata