disk-health-guardian

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The bundled installer script (scripts/install-epm.cmd) explicitly downloads and runs a binary from public mirrors (https://{d1,d2,d3}.easeus.com/epm/free/epm_free_ob.exe?...), so the skill fetches and executes third-party web-hosted content that can materially change behavior or provide instructions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill's installer script downloads and executes a remote Windows installer from https://d1.easeus.com/epm/free/epm_free_ob.exe (and mirrors d2/d3.easeus.com) at runtime, so it fetches and runs external code required for the skill.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt explicitly instructs installing and launching a disk-management installer with elevated privileges (RunAs/UAC, "run terminal as Administrator", ExecutionPolicy Bypass) and directs the agent to perform operations that can modify disks, which encourages obtaining/admin-elevating and changing system state.