setup

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly runs a runtime installer that fetches and executes remote code via "curl -fsSL https://coder.com/install.sh | sh", so the external URL https://coder.com/install.sh is used at runtime and executes remote code as a required installer dependency.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). This skill explicitly instructs installing software (curl | sh), managing services and manifests (systemctl, supervisor configs), writing/overwriting config and kubeconfig files, and starting/stopping processes—actions that mutate host state and can require elevated privileges.