seemseam-ccb-multi-agent-cli

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The installation instructions require cloning and executing code from https://github.com/SeemSeam/claude_codex_bridge.git (git clone ... then ./install.sh install), which fetches remote code that is executed as part of setup, so this external URL is a runtime dependency that can execute remote code.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.70). The skill includes installation and maintenance commands that alter system state (./install.sh, uninstall/reinstall, kill -9) and explicitly uses "powershell -ExecutionPolicy Bypass" which bypasses a security mechanism, so it can push the agent toward compromising the host.