Summary
initrunner v1.35.0 was classified as CRITICAL RISK with a risk score of 7290. Sigil detected 680 findings across 659 files, covering phases including provenance, network exfiltration, install hooks, code patterns, obfuscation, credential access. Review the findings below before installing this package.
Package description: Define AI agent roles in YAML and run them anywhere — CLI, API server, or autonomous daemon
v1.35.0
21 March 2026, 14:29 UTC
by Sigil Bot
Risk Score
7290
Findings
680
Files Scanned
659
Provenance
Findings by Phase
Phase Ordering
Phases are ordered by criticality, with the most dangerous at the top. Click any phase header to expand or collapse its findings. Critical phases are expanded by default.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/PKG-INFO:137
```bash
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --extras all
initrunner setup # wizard: pick provider, model, API keyWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/PKG-INFO:215
|---|---|---|---|
| **Setup** | `curl -fsSL https://initrunner.ai/install.sh \| sh` + API key | Install 5-10 packages, write glue code | `pip install langchain` + adapters |
| **Agent config** | One YAML file | Python classes + wiring | Python chains + config objects |Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/README.md:45
```bash
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --extras all
initrunner setup # wizard: pick provider, model, API keyWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/README.md:123
|---|---|---|---|
| **Setup** | `curl -fsSL https://initrunner.ai/install.sh \| sh` + API key | Install 5-10 packages, write glue code | `pip install langchain` + adapters |
| **Agent config** | One YAML file | Python classes + wiring | Python chains + config objects |Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/configuration/ollama.md:11
# macOS / Linux
curl -fsSL https://ollama.com/install.sh | sh
ollama serveWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installation.md:8
```bash
curl -fsSL https://initrunner.ai/install.sh | sh
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installation.md:14
```bash
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --extras ingest
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installation.md:20
```bash
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --version 0.2.0
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installation.md:50
# shell installer
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --extras all
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installation.md:68
# shell installer (comma-separated)
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --extras ingest,search,dashboard
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installer.md:9
# Install latest version
curl -fsSL https://initrunner.ai/install.sh | sh
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installer.md:12
# Install with extras (TUI, ingestion, Anthropic provider)
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --extras tui,ingest
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installer.md:15
# Pin to a specific version
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --version 0.2.0
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installer.md:18
# Force a specific installer
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --method pipx
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installer.md:21
# CI mode (no PATH modifications)
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --unmanaged
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installer.md:24
# Uninstall
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --uninstall
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installer.md:138
# Skip all profile modifications
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --unmanaged
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installer.md:142
INITRUNNER_INSTALL_METHOD=uv INITRUNNER_NO_MODIFY_PATH=1 \
curl -fsSL https://initrunner.ai/install.sh | sh
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/docs/getting-started/installer.md:152
```bash
curl -fsSL https://initrunner.ai/install.sh | sh -s -- --uninstall
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/examples/roles/initrunner-support/knowledge-base/provider-configuration.md:186
# Install Ollama
curl -fsSL https://ollama.com/install.sh | sh
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/install.sh:3
# initrunner installer
# Usage: curl -fsSL https://initrunner.ai/install.sh | sh
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --extras tui,ingestWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/install.sh:4
# Usage: curl -fsSL https://initrunner.ai/install.sh | sh
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --extras tui,ingest
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --version 0.2.0Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/install.sh:5
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --extras tui,ingest
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --version 0.2.0
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --unmanagedWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/install.sh:6
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --version 0.2.0
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --unmanaged
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --method pipxWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/install.sh:7
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --unmanaged
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --method pipx
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --uninstallWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/install.sh:8
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --method pipx
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --uninstall
set -euWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/install.sh:113
Usage:
curl -fsSL https://initrunner.ai/install.sh | sh
curl -fsSL https://initrunner.ai/install.sh | sh -s -- [OPTIONS]Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/install.sh:114
curl -fsSL https://initrunner.ai/install.sh | sh
curl -fsSL https://initrunner.ai/install.sh | sh -s -- [OPTIONS]
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/install.sh:285
curl -LsSf https://astral.sh/uv/install.sh | sh
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/tests/installer/install.sh:3
# initrunner installer
# Usage: curl -fsSL https://initrunner.ai/install.sh | sh
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --extras tui,ingestWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/tests/installer/install.sh:4
# Usage: curl -fsSL https://initrunner.ai/install.sh | sh
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --extras tui,ingest
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --version 0.2.0Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/tests/installer/install.sh:5
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --extras tui,ingest
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --version 0.2.0
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --unmanagedWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/tests/installer/install.sh:6
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --version 0.2.0
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --unmanaged
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --method pipxWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/tests/installer/install.sh:7
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --unmanaged
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --method pipx
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --uninstallWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/tests/installer/install.sh:8
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --method pipx
# curl -fsSL https://initrunner.ai/install.sh | sh -s -- --uninstall
set -euWhy was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/tests/installer/install.sh:113
Usage:
curl -fsSL https://initrunner.ai/install.sh | sh
curl -fsSL https://initrunner.ai/install.sh | sh -s -- [OPTIONS]Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/tests/installer/install.sh:114
curl -fsSL https://initrunner.ai/install.sh | sh
curl -fsSL https://initrunner.ai/install.sh | sh -s -- [OPTIONS]
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
initrunner-1.35.0/tests/installer/install.sh:285
curl -LsSf https://astral.sh/uv/install.sh | sh
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
Badge
Markdown
[](https://sigilsec.ai/scans/F604F2FF-9330-4305-A9DF-68549BB98C4B)HTML
<a href="https://sigilsec.ai/scans/F604F2FF-9330-4305-A9DF-68549BB98C4B"><img src="https://sigilsec.ai/badge/pypi/initrunner" alt="Sigil Scan"></a>Run This Scan Yourself
Scan your own packages
Run Sigil locally to audit any package before it touches your codebase.
Early Access
Get cloud scanning, threat intel, and CI/CD integration.
Join 150+ developers on the waitlist.
Get threat intelligence and product updates
Security research, new threat signatures, and product updates. No spam.
Other pypi scans
Believe this result is incorrect? Request a review or see our Terms of Service and Methodology.