avast-premium-security-malware-analysis

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's installation steps explicitly run "git clone https://github.com/avast/retdec" and then build/run RetDec (e.g., /opt/retdec/bin/retdec-decompiler.py), which fetches remote code that is built and executed and is required for the described analysis workflow, so this URL is a runtime dependency that executes remote code.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs using sudo (e.g., "sudo make install", "sudo apt-get install") and directs installing/deploying tools and running potentially malicious binaries, which require privilege escalation and modify the host system state.