Synap

Security checks across malware telemetry and agentic risk

Overview

Synap is a disclosed knowledge-memory and message-relay integration, but users should treat connected channels and the API key as sensitive.

Install only if you trust the configured Synap pod or self-host it. Use least-privilege API keys, keep keys out of logs and source control, and connect only messaging channels whose participants are allowed to have their messages stored and processed by Synap.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly supports relaying messages from external platforms into Synap and setting `autoRespond: true` to trigger AI processing, but it does not require an explicit user-facing consent or warning before transmitting third-party content. This creates a real privacy and compliance risk because externally sourced messages may contain sensitive data, and users may not realize those messages are being ingested, stored, and processed by another AI system.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal