geo-update

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). This is a personal GitHub repository from an unknown/unverified user that the skill clones and installs (including scripts, executable hooks, and pip dependencies), so while GitHub is legitimate, running unvetted code from a low-reputation repo poses a moderate-to-high malware risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Step 2 explicitly clones a public GitHub repository (https://github.com/zubair-trabzada/geo-seo-claude.git) and subsequent steps read, diff, copy, and potentially install/run files (scripts, agents, hooks, requirements.txt) from that untrusted, user-controlled source which can materially change agent behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill runtime clones and uses https://github.com/zubair-trabzada/geo-seo-claude.git, then copies upstream agent markdown (which control prompts), executable scripts/hooks, and installs requirements, so remote content can directly control agent prompts and execute code.