analyze-agent-usage
Fail
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: HIGHREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill instructs the agent to recommend an installation command that downloads a shell script from the author's repository and pipes it to bash (
curl -fsSL https://raw.githubusercontent.com/srbouffard/arok/main/install.sh | bash). - [REMOTE_CODE_EXECUTION]: The command reference documentation identifies an
arok updatecommand that fetches and installs binary updates from remote sources. - [COMMAND_EXECUTION]: The workflow relies on executing several local CLI commands (
arok analyze,arok query,arok doctor) to retrieve data from a local SQLite database.
Recommendations
- HIGH: Downloads and executes remote code from: https://raw.githubusercontent.com/srbouffard/arok/main/install.sh - DO NOT USE without thorough review
Audit Metadata