Li Etl Handle Safe

Security checks across malware telemetry and agentic risk

Overview

The skill’s spreadsheet features look purpose-aligned, but its dependency lockfile contradicts its claimed use of official HTTPS npm sources.

Review before installing. The spreadsheet functions appear local and aligned with the stated purpose, but install from this lockfile relies on plain HTTP mirror URLs despite documentation claiming official HTTPS sources. Prefer a version with the lockfile regenerated from an official HTTPS registry, and use the file-writing functions only on intended paths or backups.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 97% confidence
Finding: The lockfile pins package downloads to a locale-specific mirror over plain HTTP, which removes transport-layer authenticity and allows a network attacker or compromised mirror to tamper with package tarballs in transit. Although npm integrity hashes provide some protection, using insecure transport and a hard-coded third-party mirror still weakens supply-chain trust, creates reliability/governance risk, and may enable downgrade or substitution attacks if integrity handling is bypassed or inconsistently enforced in tooling.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal