Tmp.BojnquxAYs

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate OneHome listing helper, but it requires private portal authentication to work.

Install only if you are comfortable letting the MCP access private OneHome portal data shared by your real-estate agent. Treat magic links and bearer tokens as secrets: provide them through environment variables or a secret manager, avoid pasting them into chats or logs, refresh expired tokens, and use the raw GraphQL escape hatch only for fields you actually need.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The skill explicitly instructs operators to supply a raw bearer JWT, a magic-link token, or capture authentication from a signed-in browser tab, but it does not include safeguards, minimization guidance, or warnings about the sensitivity of those credentials. Because OneHome magic-link and bearer tokens may grant access to private real-estate portal data, normalizing their collection and reuse increases the risk of credential leakage, unauthorized access, and accidental exposure through logs, prompts, or tool traces.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal