red-crawler-ops

Remote code download and execution detected

curl -LsSf https://astral.sh/uv/install.sh | sh

The skill executes `uv run red-crawler` commands with numerous parameters accepting file paths. An attacker could manipulate these paths to read/write arbitrary files, overwrite system files, or exfiltrate data. Setup instructions also include `sudo apt-get install` and `curl | sh`.

`uv run red-crawler crawl-seed --db-path "./data/red_crawler.db" --output-dir "./output"`, `sudo apt-get install -y git python3 python3-pip`, `curl -LsSf https://astral.sh/uv/install.sh | sh`

The `login` command saves Playwright storage state (`state.json`) containing authentication tokens. If an attacker can control the `--save-state` path or access this file, it could lead to session hijacking or credential theft.

`uv run red-crawler login --save-state "./state.json"`, "Path to save storage state"

The skill's primary function is to crawl and extract sensitive 'contact information (emails, etc.)' and generate reports. If an attacker can control the output directories, this sensitive data could be directed to an attacker-controlled location or made accessible for exfiltration.

"Outputs: accounts.csv, contact_leads.csv", "Extracted contact information (emails, etc.)", `--output-dir`, `--report-dir`

Crawling commands (`crawl-seed`, `collect-nightly`) have parameters like `max-accounts`, `max-depth`, and `crawl-budget`. An agent could be instructed to set these to excessively high values, leading to denial-of-service or excessive resource consumption on the host system or target website.

`--max-accounts 5`, `--max-depth 2`, `--crawl-budget 30`