azure-devops

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). Two of the URLs are normal Azure DevOps org endpoints (not downloads), but the skill explicitly directs users to curl|sh a raw GitHub shell script (raw.githubusercontent.com/jorgemuza/orbit/main/install.sh), and running unverified remote .sh installers is a high-risk vector for malware.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's core workflows call the Azure DevOps service (dev.azure.com / *.visualstudio.com) to list and view work items, saved queries, and System.Description fields—user-generated content the agent is expected to read and could materially influence follow-up actions.