omc-setup

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.70). This is a personal GitHub repository (unknown maintainer) that instructs running shell/install scripts from the repo—GitHub is better than anonymous file hosts but executing unvetted scripts from a low-profile account poses a meaningful malware/compromise risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The setup flow explicitly downloads and installs CLAUDE.md (with a fallback to the public GitHub raw URL https://raw.githubusercontent.com/Yeachan-Heo/oh-my-claudecode/main/docs/CLAUDE.md) and queries npm (npm view) for versions, meaning the agent reads and acts on content from open/public third‑party sources that can change configuration and runtime behavior.