Security audit

DataSage

Security checks across malware telemetry and agentic risk

Overview

DataSage is a coherent paid data-analysis helper, but it sends payment tokens to a default raw-IP payment gateway over unencrypted HTTP.

Review this plugin before installing. It does not show malware-like behavior, but users should avoid sending real payment transaction IDs through the default HTTP gateway; only use it if you trust the publisher and can configure a trusted HTTPS payment gateway.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 98% confidence
Finding: The plugin sends payment tokens to a hard-coded gateway over plain HTTP, which exposes the token and associated skill identifier to interception or tampering by anyone on the network path. Because the token is used to authorize paid access, an attacker could steal, replay, or manipulate verification traffic, causing fraudulent unlocks, payment bypass, or denial of legitimate access.

VirusTotal

60/60 vendors flagged this plugin as clean.

View on VirusTotal