Security audit

Zip Unzip File Compression 10mb

Security checks across malware telemetry and agentic risk

Overview

This is a remote ZIP/GZIP utility with disclosed cloud storage defaults, so it is acceptable but should not be used for sensitive files unless the user is comfortable with AgentPMT processing them.

Install only if you are comfortable sending selected archives or file contents to AgentPMT for remote processing. For sensitive files, use store_file: false when possible, avoid sharing signed URLs, and do not submit secrets, credentials, private keys, or confidential documents unless the 7-day cloud storage behavior is acceptable.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (3)

Missing User Warnings

High

Confidence: 95% confidence
Finding: The skill prominently describes compression/decompression behavior but does not clearly warn at the top-level that inputs and extracted files are stored in cloud storage by default and exposed through signed URLs. This can cause users or downstream agents to send sensitive archives under the false assumption of local-only processing, resulting in unintended third-party transmission and temporary external availability of file contents.

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The decompression schema states that extracted files are stored in cloud storage and defaults `store_file` to true, but it does not prominently warn users that uploaded archive contents will persist remotely. This creates a privacy and data-handling risk because users may submit sensitive archives expecting transient processing, while the skill persists all extracted files by default.

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The compression schema indicates that generated archives may be stored in cloud storage and defaults `store_file` to true, without a clear warning that user-provided file contents may be retained remotely. This is risky because users may provide confidential documents for compression and unintentionally cause them to be persisted outside the immediate workflow.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal