og-image-design
Fail
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- Remote Code Execution (CRITICAL): The automated scan detected the command
curl -fsSL https://cli.inference.sh | sh. This specific pattern downloads a shell script from a remote server and executes it immediately without validation. Because the source is not a recognized trusted repository or organization, this allows for arbitrary, unverified code execution. - External Downloads (HIGH): The skill targets
https://cli.inference.shfor downloading executable content. This domain is not included in the list of Trusted External Sources, posing a significant security risk.
Recommendations
- HIGH: Downloads and executes remote code from: https://cli.inference.sh - DO NOT USE without thorough review
- AI detected serious security threats
Audit Metadata