Back to skill

Security audit

Placed Job Tracker

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Placed job-application tracker, but users should be careful with the saved API key and confirm deletions before allowing them.

Install only if you trust Placed with your job-search data. Prefer a revocable API key, protect or avoid persisting the credentials file, and require the agent to preview and confirm any update or delete action.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill instructs persisting the user's API key to a plaintext file in the home directory without warning about long-term storage, file permissions, or shared-machine risk. This increases the chance of credential theft from local compromise, backups, shell history mishandling, or other processes/users reading the file.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill exposes a destructive delete operation with no warning, confirmation step, or note about reversibility. That makes accidental data loss more likely, especially in an assistant-driven workflow where users may issue ambiguous commands and expect a safe default.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The API guide documents a destructive `delete_job_application` operation but provides no guidance to require user confirmation, preview the target record, or mitigate accidental deletion. In an agent setting, this increases the chance that a misunderstood request, ambiguous job ID, or prompt-manipulated action could permanently remove user data without explicit consent.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.