ubs

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.85). These URLs include raw install scripts and release assets hosted under a single personal/unknown GitHub account (e.g., Dicklesworthstone) with explicit curl|bash install instructions, lazy-download/update behaviors and direct raw.githubusercontent.com links — a common, high-risk distribution pattern for arbitrary/malicious binaries even though some referenced projects (ast-grep, ripgrep, nodejs) are legitimate.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill contains explicit curl|bash installer commands that fetch and execute remote scripts at runtime (e.g., https://raw.githubusercontent.com/Dicklesworthstone/ultimate_bug_scanner/main/install.sh and https://raw.githubusercontent.com/steveyegge/beads/main/scripts/install.sh, plus related raw.githubusercontent.com URLs like /ubs and /scripts/verify.sh), which means external content would be executed and can directly control the agent/run-time environment.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill includes explicit installation commands that write to system paths (e.g., /usr/local/bin), a curl | bash installer, and a "doctor --fix" auto-fix which can install dependencies — all of which push an agent to modify the host system and potentially require elevated/sudo actions.

MEDIUM W021: Hidden or invisible Unicode characters detected (potential obfuscation or prompt injection).

• Hidden Unicode characters detected (1 type(s) found)