Bank of Korea ECOS CLI
Security checks across malware telemetry and agentic risk
Overview
This skill is a straightforward Bank of Korea ECOS API CLI helper with an expected API key requirement and no reviewed evidence of hidden or unsafe behavior.
Install only from a source you trust, preferably in a virtual environment. Keep BOK_API_KEY out of shared logs, chats, and shell history. The reviewed skill text is purpose-aligned, but it does not include the CLI implementation, so inspect any repository or package you clone before running pip install -e .
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.