Back to skill

Security audit

Wiz Migration

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate Wiz note migration helper, but its optional Windows batch-script path can execute caller-supplied scripts with user privileges.

Review before installing if you plan to use this on Windows. Use the Python copy path without script_path, choose precise Wiz source and destination folders, keep a backup of the original notes, and do not pass or run a batch script unless you have inspected it and trust its contents.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Behavioral ASTexec() Call, eval() Call, Dynamic Import
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

subprocess module call

Medium
Category
Dangerous Code Execution
Content
try:
        print("正在运行批处理脚本...")
        result = subprocess.run(
            [str(temp_script)],
            shell=True,
            capture_output=True,
Confidence
95% confidence
Finding
result = subprocess.run( [str(temp_script)], shell=True, capture_output=True, text=True, encoding='utf-8' )

Context-Inappropriate Capability

Medium
Confidence
89% confidence
Finding
This migration helper accepts an arbitrary script_path and executes it as a Windows batch script, which exceeds the expected scope of attachment migration and creates a direct code-execution path. In the context of an agent skill, any capability to launch external scripts is more dangerous because upstream inputs or configuration may be attacker-controlled or less visible to the end user.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.