jobs-search

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). These are raw GitHub links to shell and PowerShell installer scripts (intended to be piped to bash/iex), which is a high-risk distribution pattern unless the repository and script contents are verified and signed.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.75). The skill runs sjctl search and then summarizes results; since sjctl is installed from a public GitHub raw URL and the search results are fetched at runtime from an external job source, the LLM context can include outsider-authored free-text job listings (titles/descriptions) returned by that public data path.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill will, at runtime if no local sjctl is found, fetch and execute remote installer scripts (curl -fsSL https://raw.githubusercontent.com/solid-company/solid-jobs-skills/main/scripts/install-sjctl.sh | bash and irm https://raw.githubusercontent.com/solid-company/solid-jobs-skills/main/scripts/install-sjctl.ps1 | iex), so external code is downloaded and executed and is required for the skill to run.