zeroHub Image API

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed zeroHub image API helper with bounded default download behavior; the scanner’s concerns are real opt-out risks but not enough to require Review.

Install only if you trust zeroHub and are comfortable providing ZEROHUB_API_KEY. Keep the default HTTPS and zeroHub-host restrictions for normal use, avoid --allowed-host or --allow-http with untrusted URLs, and choose an output directory intentionally because the skill will create files there.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Intent-Code Divergence

Medium

Confidence: 89% confidence
Finding: The module documentation presents downloads as restricted by default, but the CLI exposes flags that weaken those protections by permitting extra hosts and plain HTTP. That mismatch can mislead users and calling agents into assuming stronger guarantees than actually exist, increasing the chance of unsafe invocation, SSRF-style fetching, or insecure transport to attacker-controlled endpoints.

Context-Inappropriate Capability

Medium

Confidence: 93% confidence
Finding: The skill’s stated purpose is downloading zeroHub image URLs, but these CLI options allow expansion to arbitrary additional hosts and optional HTTP downloads. In an agent setting, that broadens the tool into a general network fetch primitive, which can be abused to retrieve attacker-chosen content from non-zeroHub systems and weakens the trust boundary implied by the skill description.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal