TON.fun Feed Relay

Security checks across malware telemetry and agentic risk

Overview

This skill is coherent, but it can automatically publish third-party tagged tweets from the user's social accounts using posting tokens.

Install only if you intentionally want an agent to repost @TonFunX-tagged content from your accounts. Use dedicated low-scope posting tokens, keep them in environment variables or a secret manager, review content before posting when possible, monitor the relay log, and revoke tokens if posts are not what you intended.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill instructs users to send authenticated POST requests containing bearer tokens and reposted content to third-party platforms, but it provides no security guidance about credential handling, destination trust, content review, or data-sharing implications. In this context, the skill is explicitly designed to relay externally sourced content, so it can cause unintended publication of unreviewed text and exposure of API credentials if logs, shells, or automation pipelines are not handled safely.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal