OpenAirtime

Security checks across malware telemetry and agentic risk

Overview

The skill matches its airtime giveaway purpose, but it asks an agent to use unreviewed local scripts with preconfigured accounts to post publicly and process phone numbers without clear privacy, credential, or spending boundaries.

Install only if you control and have audited the referenced local scripts, know exactly which Farcaster and airtime-service credentials they use, and can set limits for replies, force replies, airtime claims, and phone-number handling. Avoid asking users to post phone numbers publicly; use a private or secure collection path and define retention/deletion rules.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill explicitly instructs users to send a claim code together with a Nigerian phone number, which is personal contact data, but provides no guidance on minimizing collection, avoiding public disclosure, or protecting that information. In the Farcaster context, replies may be public or broadly visible, making accidental exposure of phone numbers more likely and increasing privacy and abuse risk.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal