devtools-hub-installer

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). The set includes a direct .exe download from an untrusted domain and GitHub releases from an unknown/third‑party account (potentially bundling installers), making these links a plausible vector for distributing malicious executables unless independently verified.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt directs performing UAC-elevated operations (running PowerShell installers, modifying the machine PATH and registry, and changing PowerShell execution policy), which explicitly instructs privileged, system-level modifications that can change the host state.