dns-troubleshooter

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). This is a direct raw GitHub link to an install.sh in a personal repository (mr-karan/doggo) — downloading and piping/ running a remote shell script from an unvetted user is high-risk because it can execute arbitrary commands on your system.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill directs the agent to fetch and parse arbitrary public DNS and TXT records (using dig/doggo and public resolvers like 8.8.8.8/1.1.1.1 and by recursing into SPF includes such as _spf.* domains), which are untrusted third-party sources the agent must read and interpret.