genmedia

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). Both URLs point to executable install scripts on an unverified domain and the skill instructs piping them straight into a shell/PowerShell (curl | bash, irm | iex), which executes remote code and is a high-risk vector for malware distribution.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's setup instructions include commands that fetch and execute remote installer scripts (curl https://genmedia.sh/install -fsS | bash and irm https://genmedia.sh/install.ps1 | iex), which run remote code and are presented as required to install the genmedia CLI used by the skill.