Nutrition Tracker

Security checks across malware telemetry and agentic risk

Overview

The skill mostly matches its nutrition-tracking purpose, but its profile setup script can run unintended local code if crafted input is passed to it.

Review before installing. Use only trusted simple values with the profile setup script, keep the Obsidian vault private because it will contain health data, and prefer a fixed version that passes inputs through environment variables or JSON encoding before running it.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 92% confidence
Finding: The skill documentation instructs execution of local shell scripts that read environment data and perform file writes into a user Obsidian vault, but it does not declare any permissions for those capabilities. This creates a trust and review gap: users or enforcement systems may assume the skill is low-privilege when it can modify local files and access environment-derived paths, increasing the chance of unintended data modification or abuse if the scripts are changed or invoked with unsafe inputs.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal