grok-cli

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). The URL is a direct link to an install.sh shell script (a remote executable) on x.ai — likely the official xAI/grok installer but executing remote shell scripts (curl | bash) is a high-risk distribution vector unless you verify the domain, TLS cert, signature/checksum, and provenance first.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The required runtime workflow invokes the authenticated grok CLI with --disallowed-tools web_fetch (forcing live web_search), so Grok’s sub-agent will ingest outsider-authored web/X content it fetches/searches and include it in the returned json field (.text) that is then read into the main agent context via jq -r '.text'.