markdown.new

Security checks across malware telemetry and agentic risk

Overview

This skill is a simple helper for turning public web pages into Markdown through markdown.new, but users should avoid it for private or token-bearing links.

Use this skill for public documentation, READMEs, blog posts, changelogs, and similar pages. Do not use it with private intranet URLs, authenticated pages, signed links, or URLs containing tokens, secrets, or confidential query parameters unless you are comfortable sending that URL and reachable content to markdown.new.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill instructs the agent to send arbitrary target URLs to the third-party service markdown.new by embedding them in a request URL, but it provides no warning, consent check, or restriction for sensitive destinations. This can leak private, internal, signed, or user-specific URLs to an external service and may also cause unintended access attempts against internal resources through that service.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal