Back to skill

Security audit

Kazakh Convert

Security checks across malware telemetry and agentic risk

Overview

This is a local Kazakh script-conversion skill with expected file and dictionary features, but users should choose file paths carefully.

Install this if you need Kazakh Cyrillic/Arabic conversion. Use explicit input and output paths, avoid pointing it at sensitive files, and review dictionary changes because saved replacements affect future conversions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
94% confidence
Finding
The auto-trigger phrases include very generic language such as '转成阿拉伯文' and '转成西里尔文', which can match ordinary conversational requests rather than an explicit tool invocation. In an agent environment, this can cause the skill to activate unexpectedly and perform transformations or file-related actions without sufficiently clear user intent, increasing the chance of unintended tool use.

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The skill documentation advertises reading from an input file and writing to an output file but does not clearly warn that this causes filesystem access. In a tool-using agent, that omission can lead to unsafe assumptions, making it easier for the skill to be used on unintended paths or sensitive files if the agent infers file operations from ambiguous user requests.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The tool writes directly to a user-specified path via the output argument without any confirmation, path restriction, or safe-write behavior. In a CLI utility this can lead to accidental overwriting of arbitrary files the user has permission to modify, causing data loss or corruption; while not an exploit in the remote-code-execution sense, it is a real unsafe file operation pattern.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal

Static analysis

No suspicious patterns detected.