Tmp.UCaqcQAstA

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Skylight family-hub integration, but it asks for persistent account credentials and has broad triggers that could let an agent read or change calendars, chores, and lists from ambiguous requests.

Install only if you intend your agent to access and modify your Skylight family hub. Prefer project-level MCP configuration over global configuration, protect the stored email/password, and make calendar/list/chores requests explicitly mention Skylight. For deletions or other changes, confirm the target frame, item, and action before allowing the agent to proceed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 86% confidence
Finding: The trigger description is extremely broad, matching many natural-language requests involving calendars, chores, lists, shopping, and family hub interactions. Because this skill performs authenticated read/write actions against a family account, broad invocation criteria increase the chance the agent routes unrelated or ambiguous user requests into this skill, causing unintended data access or modification.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal