51mee Resume Profile

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward resume-analysis helper, but users should treat uploaded resumes as sensitive personal data.

Install only if you intend to analyze resumes with an AI model and have permission to process the candidate data. Avoid uploading unnecessary identifiers, consider redacting sensitive fields first, and treat salary, risk, demographic, and stability predictions as advisory rather than definitive hiring criteria.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly reads uploaded resume files, extracts their text, and sends the contents to a large model, but it does not clearly warn users that potentially sensitive personal data will be processed by an AI system. Because resumes commonly contain names, phone numbers, email addresses, employment history, education, and other personal data, the lack of a prominent privacy notice can lead to uninformed disclosure and non-compliant handling of personal information.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal