Skills
skills/nexu-io/html-anything/docs-page/Gen Agent Trust Hub

docs-page

Fail

Audited by Gen Agent Trust Hub on May 14, 2026

Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The documentation file example.html contains a code block that demonstrates installing a CLI tool by downloading a script from a remote URL and piping it directly into a shell interpreter. This pattern allows for arbitrary code execution from a remote source without any prior verification.
  • Evidence: curl -fsSL https://get.filebase.dev | sh found in the installation instructions within example.html.
  • [EXTERNAL_DOWNLOADS]: The skill references an installation script hosted on an external, unknown domain. This domain is not recognized as a trusted organization or well-known service, which introduces a supply chain risk if the domain or its contents are compromised.
  • Evidence: https://get.filebase.dev referenced in example.html.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
CRITICAL
Analyzed
May 14, 2026, 11:43 AM
Security Audit — agent-trust-hub — docs-page