search1api

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). The URL points to a raw install.sh script on a non‑well‑known domain and invites running a downloaded shell script (curl|bash pattern), which is a high‑risk vector for arbitrary code execution and potential malware distribution.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly instructs using s1 search across public engines (Google, Bing, Reddit, X, GitHub, YouTube, arXiv, etc.) and to run s1 crawl in the "URL summarization" and "Deep research" workflows, which fetch and synthesize arbitrary public/user-generated web content that the agent will read and use to drive decisions and outputs.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill instructs users to run a remote installer with "curl -fsSL https://cli.search1api.com/install.sh | bash", which fetches and executes remote code as part of installing the required s1 CLI dependency.