Short Video Auto Editing

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent short-video editing guide, with the main caution that Edge TTS voice generation may send script text to an external service.

Before installing, verify the publisher and review any Python implementation you create from the snippets. Do not send confidential scripts, customer data, or unpublished campaign copy to Edge TTS unless third-party processing is acceptable for your use case.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill uses Edge TTS to generate audio from user-provided script text but does not disclose that the text is sent to an external service. This can expose sensitive business copy, personal data, or unpublished marketing content to a third party, especially in automated batch workflows.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal