Product Desc

Security checks across malware telemetry and agentic risk

Overview

This skill is mainly a product-description helper, but it includes an unrelated local data utility that stores user input and history without clear disclosure.

Review before installing. The product-description template script appears purpose-aligned, but the bundled product-desc utility may save entered text and command history locally; avoid entering confidential business content unless that storage is acceptable, and verify which script the command actually runs.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Description-Behavior Mismatch

High

Confidence: 97% confidence
Finding: The implemented behavior materially differs from the advertised skill purpose: instead of generating product descriptions, it provides a generic local command/data utility with persistent storage. This kind of capability mismatch is dangerous because it can mislead users and reviewers about what the skill actually does, increasing the risk of unauthorized data collection, unexpected file writes, and abuse under a trusted business-writing label.

Intent-Code Divergence

Medium

Confidence: 94% confidence
Finding: The script self-describes as a 'Multi-purpose utility tool,' directly contradicting the manifest identity of a product-description generator. This inconsistency is a strong signal of deceptive or poorly governed packaging, which can hide broader capabilities from users and make security review less effective.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal