Security audit
Pipeworx bible
Security checks across malware telemetry and agentic risk
Overview
This is a straightforward Bible lookup skill that uses a remote Pipeworx MCP endpoint and shows no hidden local access or persistence.
Reasonable to install if you are comfortable routing Bible lookup requests through Pipeworx's remote MCP gateway. Consider pinning mcp-remote instead of using @latest if you need reproducible installs, and avoid sending private notes or sensitive context in lookup prompts.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
