skill-forge-base

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 0.90). High risk: the code exposes multiple severe vulnerabilities — arbitrary file read (path traversal when serving /history/), stored XSS (unescaped AI responses and question content rendered into pages), and potential command injection / remote command execution via spawning the configured AI CLI with shell:true (plus the code sends user/quiz data to an external AI CLI/service), all combined with unauthenticated destructive APIs — enabling data exfiltration and system compromise.