analyze-agent-usage

Fail

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: HIGHREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The skill instructs the agent to recommend an installation command that downloads a shell script from the author's repository and pipes it to bash (curl -fsSL https://raw.githubusercontent.com/srbouffard/arok/main/install.sh | bash).
  • [REMOTE_CODE_EXECUTION]: The command reference documentation identifies an arok update command that fetches and installs binary updates from remote sources.
  • [COMMAND_EXECUTION]: The workflow relies on executing several local CLI commands (arok analyze, arok query, arok doctor) to retrieve data from a local SQLite database.
Recommendations
  • HIGH: Downloads and executes remote code from: https://raw.githubusercontent.com/srbouffard/arok/main/install.sh - DO NOT USE without thorough review
Audit Metadata
Risk Level
HIGH
Analyzed
Jun 17, 2026, 08:08 PM
Security Audit — agent-trust-hub — analyze-agent-usage