Back to skill

Security audit

Alicloud Security Kms

Security checks across malware telemetry and agentic risk

Overview

This appears to be a coherent Alibaba Cloud KMS management skill, but users should treat any key-changing actions as high-impact operations requiring explicit confirmation.

Install only if you intend to let the agent help with Alibaba Cloud KMS. Before approving any create, update, disable, rotate, policy, or deletion action, verify the Alibaba account, region, key identifier, and expected impact, and prefer read-only inspection or dry-run-style review first.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
80% confidence
Finding
The invocation text is broad enough to match many generic KMS-related requests, including sensitive lifecycle, policy, and configuration tasks. Over-broad routing increases the probability that the skill is selected in contexts involving production secrets or destructive operations without sufficient user confirmation or scope restriction.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill advertises key lifecycle and configuration changes but does not prominently warn that it may perform mutating KMS operations affecting encryption keys and security posture. In a KMS context, unclear mutation warnings are more dangerous because mistakes can disable keys, alter policies, or impact protected workloads and access controls.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.