boss-greeting message
Security checks across malware telemetry and agentic risk
Overview
This skill is a coherent job-greeting helper, but it relies on an external CLI login flow that may read browser cookies for a job-site account.
Review and trust the kabi-boss-cli package before installing it. Prefer QR login over browser-cookie reuse if available, provide only the resume details needed for the greeting, and confirm the skill is only fetching job details and drafting text rather than sending messages or applying on your behalf.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.