disk-cleaner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's auto-install workflow explicitly fetches and executes third-party content (install_homebrew runs curl -fsSL https://raw.githubusercontent.com/.../install.sh and install_mole uses Homebrew taps/installs from public repositories), which are untrusted public sources and are invoked as part of the required runtime workflow (see SKILL.md and install_* functions), so remote content can materially change behavior or tooling.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill's install_homebrew function executes a remote installer at runtime using '/bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)"', which fetches and runs remote code to install a required dependency (Homebrew).

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.70). The skill automates installing and running a disk-cleaning tool that deletes files and modifies system state (system/user caches, logs, etc.), so it poses a non-trivial risk of destructive changes even though it does not explicitly request sudo, privilege bypass, or user-account/system-config modifications.