claude-code-restored-runtime

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.70). While the GitHub links point to source code on a mainstream platform and ara.so appears to be a project site, the repo is from an unvetted/unknown account and the instructions ask you to clone, run, and supply GitHub tokens — actions that can easily be abused to run malicious scripts or exfiltrate credentials — so treat it as a moderately high risk until audited.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill explicitly instructs cloning and running code from the remote repository https://github.com/oboard/claude-code-rev (git clone ... then bun run dev), which fetches and executes external code that implements and controls the agent runtime and prompts.