Axi Send File

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Telegram file-delivery helper, but users should confirm exactly which file is being sent before using it.

Install this only if you want your agent to prepare and send workspace files through Telegram. Before any MEDIA delivery, confirm the exact file path and avoid sending secrets, credentials, or sensitive workspace data unless you explicitly intend to share them.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The trigger phrases are broad enough to activate on ordinary requests like 'send me the file' or 'share this' without forcing confirmation about which local file should be transmitted. In a skill that can package and exfiltrate workspace files through Telegram, ambiguous invocation increases the risk of unintended disclosure of sensitive local content.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explains that `MEDIA:/path` sends files through Telegram's Bot API, but it does not require a clear user-facing warning or confirmation before transmission. Because Telegram delivery exports local files outside the agent environment, missing disclosure can cause accidental sharing of sensitive workspace or temporary files.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal