x-env

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's installation guide (data/install.md) explicitly instructs downloading and potentially auto-executing remote install scripts from https://get.x-cmd.com and binaries from https://github.com/x-cmd/release (and suggests reviewing the downloaded script), which exposes the agent to untrusted public third-party content that it may read/execute as part of its workflow.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's install instructions explicitly include an auto-install command that fetches and executes remote code at runtime via "curl -fsSL https://get.x-cmd.com | sh", which would run remote code and is a required dependency for using the skill.