Context-Inappropriate Capability
High
- Confidence
- 92% confidence
- Finding
- The skill includes shell commands that clone and run an external GitHub project and download release archives directly from the internet. In an agent-skill context, this is dangerous because it encourages execution of unpinned third-party code, creating supply-chain and arbitrary code execution risk if an implementation follows the instructions automatically.
