alibabacloud-emr-starrocks-assistant

Fail

Audited by Snyk on May 29, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E005: Suspicious download URL detected in skill instructions.

  • Suspicious download URL detected (high risk: 0.80). Two entries are high-risk executable distribution vectors — a remote install script (https://astral.sh/uv/install.sh) and a direct JAR URL (http://server/my-udf.jar) from non-official/untrusted hosts — while the remaining links are documentation or internal API/service endpoints and are low-risk; therefore the set contains suspicious download sources.

Issues (1)

E005
CRITICAL

Suspicious download URL detected in skill instructions.

Audit Metadata
Risk Level
CRITICAL
Analyzed
May 29, 2026, 03:05 AM
Issues
1
Security Audit — snyk — alibabacloud-emr-starrocks-assistant