Domain Check

Security checks across malware telemetry and agentic risk

Overview

This skill appears aimed at Vercel domain management, but it documents direct token-backed domain purchase commands that can spend money without a clear confirmation gate.

Install only if you want an agent to help with Vercel domain operations and are comfortable with it using your Vercel CLI session. Do not let it run domain purchase API commands unless you have explicitly approved the exact domain and cost; prefer interactive Vercel CLI confirmation for purchases.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly documents a non-interactive API purchase flow that can charge the user's Vercel account using a locally stored bearer token, but it does not provide a prominent warning that this action incurs real financial cost. In an agent-skill context, providing a ready-to-run POST purchase example materially increases the risk of unintended or automated spending, especially compared with the CLI flow that at least mentions confirmation prompts.

External Transmission

Medium

Category: Data Exfiltration
Content: # purchasePrice: null = taken, number = available # Buy via API curl -s -X POST "https://api.vercel.com/v1/registrar/domains${TEAM_PARAM}" \ -H "Authorization: Bearer $VERCEL_TOKEN" \ -H "Content-Type: application/json" \ -d '{"name": "example.com"}'
Confidence: 93% confidence
Finding: https://api.vercel.com/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal