Email Notify

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims: sends user-configured SMTP task-completion emails, with no hidden persistence or unrelated behavior found.

Install only if you are comfortable sending task title, device name, project name, status, and summary to the configured email recipients through your SMTP provider. Keep summaries free of secrets, use app-specific SMTP credentials when possible, and consider running the helper with --dry-run first to preview the exact message.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 92% confidence
Finding: The skill instructs access to environment variables and local files such as AGENTS.md, but the skill manifest does not declare those capabilities. Undeclared capability use reduces transparency and informed consent, making it easier for a skill to access configuration and contextual data without clear permission boundaries.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill is designed to send task metadata externally over SMTP, including device name, project name, status, and summary, but it does not prominently warn that project/task information leaves the local environment. Even with guidance to avoid secrets, users may still include sensitive operational or project details in summaries, causing unintended data disclosure.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal