win-uia

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 1.00). Suspicious — it's a direct raw .ps1 install script served from a single GitHub user/repo (unknown trust) intended to be piped to iex, which is a high‑risk pattern for distributing malware unless you fully inspect and trust the repository.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md and README explicitly instruct running irm https://raw.githubusercontent.com/amitse/uiacli/master/install.ps1 | iex (and the included install.ps1 itself downloads release assets from GitHub), which fetches and executes untrusted public GitHub-hosted content as part of the required install workflow and could therefore introduce arbitrary code that alters tool behavior or subsequent agent actions.