seed-create

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). The URLs point to raw GitHub content (including an install.sh intended to be executed), and while GitHub is a common host this is an unvetted/third‑party repo—downloading and piping a remote shell script to bash from an unfamiliar repository is a common malware distribution vector and therefore suspicious.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (low risk: 0.30). The skill explicitly instructs the agent to create directories, write files, run git init and commit (i.e., modify disk state) after user approval, but it does not request sudo, create users, or modify privileged system configuration, so the risk is present but limited.