Security audit

X Article Extractor

Security checks across malware telemetry and agentic risk

Overview

This skill is coherent with its stated purpose, but users should notice that it installs a third-party Python package and downloads browser components before extracting X articles.

Install only if you are comfortable with a third-party PyPI package and a first-run Chromium download. Run it in an isolated environment when possible, allow network access only for the X article and Playwright mirrors, and avoid using it on systems where dependency install scripts or browser automation could expose sensitive local data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly relies on reaching external services (`x.com` and Playwright download mirrors), but the description and agent-facing guidance do not clearly warn users up front that execution will initiate outbound network connections and download browser binaries. In agentic environments, undisclosed network access can violate user expectations, leak metadata, or bypass restricted-network assumptions, making this a genuine transparency and security issue.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal