performing-directory-traversal-testing

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This content is high-risk: it explicitly contains exploitation payloads and procedures to read sensitive files (e.g., /etc/shadow, .env, SSH keys) and achieve remote code execution (LFI wrappers, log-poisoning, php://input, expect://, base64 payloads), so it’s clearly capable of malicious abuse if used without explicit authorization.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill issues HTTP requests to arbitrary target URLs and parses response bodies as evidence (see scripts/agent.py use of session.get/resp.text and the SKILL.md curl/ffuf/dotdotpwn workflow), so untrusted third‑party web content can be ingested and directly influence vulnerability detection and follow-up actions.