Astro Daily Transits

Security checks across malware telemetry and agentic risk

Overview

This astrology skill appears to do what it claims, but it needs Review because it can run bundled native Windows code and automatically install a Python package during use.

Install only if you are comfortable running a bundled Windows native library from this publisher. Use an isolated Python environment, install Pillow yourself from a trusted source before running, and avoid letting the skill auto-install dependencies during normal use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Behavioral ASTexec() Call, eval() Call, Dynamic Import
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

subprocess module call

Medium

Category: Dangerous Code Execution
Content: try: from PIL import Image, ImageDraw, ImageFont except ImportError: subprocess.check_call([sys.executable, "-m", "pip", "install", "pillow", "-q"]) from PIL import Image, ImageDraw, ImageFont # ─── Copy .dat → usable ───
Confidence: 98% confidence
Finding: subprocess.check_call([sys.executable, "-m", "pip", "install", "pillow", "-q"])

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal