op-auto-clicker
Fail
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides a link to download a pre-built binary package from a repository belonging to an unverified user ('jiaoyanming0-bot').
- [REMOTE_CODE_EXECUTION]: Instructions guide users to run the downloaded binary and explicitly recommend bypassing Windows Defender alerts by adding exclusions, which facilitates the execution of potentially malicious code without security oversight.
- [COMMAND_EXECUTION]: The documentation provides commands to clone a repository and build its source code locally, which involves executing code from an unverified third-party source.
- [REMOTE_CODE_EXECUTION]: The skill provides guidance on running the application with elevated administrator privileges, which significantly increases the impact of any potential vulnerability or malicious payload within the software.
Recommendations
- AI detected serious security threats
Audit Metadata