mm2-roblox-analytics-tracker
Fail
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires users to clone a code repository from
https://8015238355.github.io. This source is highly suspicious as it uses a numeric identifier for a username on a static hosting service rather than a standard code repository hosting service, indicating an unverified and potentially malicious distribution point. - [REMOTE_CODE_EXECUTION]: The installation instructions guide the user to immediately execute a downloaded shell script (
setup.sh). Running arbitrary scripts from untrusted external sources is a high-risk activity that provides a direct vector for compromising the host system. - [COMMAND_EXECUTION]: The skill recommends executing shell commands with high-risk flags, such as
chmod +xand running scripts with installation parameters, which bypasses standard security review and integrity checks for external software.
Recommendations
- AI detected serious security threats
Audit Metadata