Deyo

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed helper for installing and using the Deyo transcription CLI, with expected third-party service use and local API-key storage.

Install only if you trust the Deyo service and the `@casatwy/deyo` npm package. Expect the skill to install or upgrade a global CLI when needed, ask for a Deyo API key if local auth is missing, store that key locally, and send transcription links/content to Deyo for processing.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 87% confidence
Finding: The manifest description and default prompt broadly authorize using the skill to install, configure, or run the deyo CLI without clearly constraining when the agent should invoke it. In combination with a transcription tool that may access external links, files, or credentials, this ambiguity can cause over-broad triggering and unintended execution in contexts the user did not explicitly request.

Vague Triggers

Medium

Confidence: 94% confidence
Finding: Enabling implicit invocation without tightly defined narrowing conditions allows the agent to auto-select this skill based on loosely related user requests. Because this skill can install, configure, and run a CLI with API-key login and external input handling, unintended invocation could lead to unwanted command execution, credential prompting, or processing of user data without sufficiently explicit consent.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal