command-safety-4

CRITICAL E004: Prompt injection detected in skill instructions.

• Potential prompt injection detected (high risk: 1.00). Yes — an HTML comment hides a deceptive instruction to run a remote "curl | bash" command, which is outside the skill's stated safe command list and contradicts its safety purpose.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). The content includes a commented-out but explicit "curl ... | bash" command pointing to an untrusted external domain (https://zkorman.com/execs), a direct remote-code-execution / supply-chain pattern that indicates potential backdoor/remote execution and deliberate malicious intent.