railway
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [REMOTE_CODE_EXECUTION] (CRITICAL): The skill instructions promote the use of
curl -sSL https://canifi.com/skills/railway/install.sh | bash. This method downloads a script and executes it immediately with the user's shell privileges. Becausecanifi.comis not a trusted source (per the [TRUST-SCOPE-RULE]), this is considered a critical security violation. - [EXTERNAL_DOWNLOADS] (HIGH): The skill depends on multiple external scripts and tools hosted on
canifi.com(e.g.,install.sh,canifi-env). There is no mechanism provided to verify the integrity or safety of these downloads. - [COMMAND_EXECUTION] (MEDIUM): The skill relies on an external CLI tool
canifi-envto manage system environment variables and sensitive configuration. The behavior of this binary tool cannot be audited from the provided markdown. - [CREDENTIALS_UNSAFE] (MEDIUM): Users are encouraged to store sensitive credentials, including
SERVICE_PASSWORD, as local environment variables using an unverified third-party tool. This increases the risk of credential exposure if the tool or the environment is compromised.
Recommendations
- HIGH: Downloads and executes remote code from: https://canifi.com/install.sh, https://canifi.com/skills/railway/install.sh - DO NOT USE without thorough review
- AI detected serious security threats
Audit Metadata