confighub-usage-guide

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.70). Most URLs are legitimate documentation and an official Helm chart repo, but the instruction to curl | bash the remote install script (https://hub.confighub.com/cub/install.sh) is a risky pattern because executing an unverified remote shell script can install malware, so the set is moderately high risk unless you trust and have audited that script.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This guide instructs running commands that fetch and ingest public third-party content (e.g., curl https://hub.confighub.com/cub/install.sh and helm repo add https://charts.bitnami.com/bitnami and cub helm install bitnami/nginx), so the agent/workflow is expected to pull and process untrusted external web content.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The guide explicitly instructs running a curl|bash installer and a sudo ln -sf into /usr/local/bin (modifying system files with elevated privileges), which directs the agent to perform privileged changes to the host.