Context-Inappropriate Capability
Medium
- Confidence
- 95% confidence
- Finding
- The script downloads a remote manifest and automatically upgrades/install an SDK from a remote wheel during environment initialization, without pinning trust via checksum/signature verification or requiring explicit approval. This creates a supply-chain execution path: if the remote host, manifest, or package is tampered with, arbitrary code can be introduced into the user's environment simply by sourcing the init script.
