vercel-deploy

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 0.90). This skill intentionally packages and POSTs the user's project directory to an external, third‑party deploy endpoint without authentication (and does not exclude common secret files like .env), and even instructs relaxing network egress—constituting a high-risk data‑exfiltration/abuse pattern, though the script contains no obfuscated backdoor, remote code execution, or credential‑stealing routines beyond the upload itself.