Back to skill

Security audit

Etsy Category Listing

Security checks across malware telemetry and agentic risk

Overview

This Etsy scraping skill is understandable in purpose, but it tells agents to use stealth sessions, fingerprint or proxy changes, and multi-session scraping when Etsy blocks automation.

Install only if you are comfortable with an agent automating Etsy category scraping and you will keep use within Etsy's rules and any applicable laws. Do not use the stealth, proxy, fingerprint-rotation, or multi-session evasion instructions; if Etsy presents an anti-bot challenge, stop rather than retrying around it. Review and control any files created from scraped results.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Context-Inappropriate Capability

High
Confidence
97% confidence
Finding
The skill explicitly instructs the operator to use stealth browser sessions and survive or work around DataDome anti-bot protections before scraping Etsy pages. Guidance to evade detection and anti-bot controls materially increases abuse potential and crosses from simple page extraction into defensive-control circumvention.

Intent-Code Divergence

High
Confidence
98% confidence
Finding
The documentation claims the skill never bypasses access controls, yet elsewhere it recommends stealth browsers, fingerprint changes, and proxy rotation when anti-bot defenses appear. This contradiction is dangerous because it launders an evasion capability behind reassuring language, making risky behavior seem compliant or harmless.

Context-Inappropriate Capability

High
Confidence
99% confidence
Finding
The skill directs users to switch fingerprints or proxies and retry after anti-bot verification blocks, which is a concrete evasion workflow rather than ordinary scraping guidance. Such instructions facilitate repeated unauthorized automation against a service that is actively signaling the automation should stop.

Context-Inappropriate Capability

Medium
Confidence
93% confidence
Finding
The batch guidance recommends serial pacing, multiple stealth sessions, and distribution across sessions to increase throughput while reducing detection risk. Even if framed as efficiency advice, this operationalizes scalable scraping evasion and can amplify abusive collection volume.

Missing User Warnings

Low
Confidence
84% confidence
Finding
The instructions tell the operator to save each page's results to a file without any user-facing disclosure or consent about local persistence. While the data appears to be public marketplace data, silent file writes still create avoidable privacy, retention, and transparency risks in an agent environment.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.