sage

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 0.95). The content includes multiple explicit offensive/backdoor examples and tooling (HTTP C2 server, DNS exfiltration, shellcode loaders/VirtualAlloc, eval/exec patterns, persistence recipes like registry/cron/ld.so.preload, credential-theft techniques such as Mimikatz/PTH, and guidance for supply-chain attacks) and also contains an execution entrypoint (run_skill.js) that can invoke local skill scripts — this combination presents a high risk of deliberate misuse and covert data exfiltration if not tightly controlled.