Pypi Package Changelog Generator

Security checks across malware telemetry and agentic risk

Overview

This skill appears to compare PyPI package versions as described, with the main caution being safe handling of an optional GitHub token.

Install only if you are comfortable with the skill making network requests to PyPI and GitHub. If you use a GitHub token, use a short-lived, least-privilege read-only token and prefer environment or secret-manager sourcing over placing a real token directly in persistent config files.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The documentation explicitly shows a GitHub token embedded directly in configuration under an `env` block, which normalizes storing a secret in a file that may be checked into source control, backed up, logged, or shared. In the context of a skill that makes GitHub requests, this increases the chance of credential leakage and unauthorized access if users copy the example without understanding the risk.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal