Back to skill

Security audit

WordPress Self-Hosted

Security checks across malware telemetry and agentic risk

Overview

This skill gives an agent disclosed WordPress administration access to a user-configured site, with no hidden installer or background behavior found.

Install only if you want an agent to administer the configured self-hosted WordPress site. Use a dedicated least-privilege SSH user and WordPress application password, verify WP_HOST and WP_ROOT before use, pre-pin SSH host keys when possible, and require confirmation before publishing, deleting, plugin/theme, database, or file-management actions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Tool Parameter Abuse

High
Category
Tool Misuse
Content
# After use, clean up local and remote temp files
rm -f /tmp/post-content.html
ssh <ssh-user>@<wp-host> 'rm -f /tmp/post-content.html'
```

Temp files contain post HTML content only — not credentials. App passwords retrieved via `op` are captured into shell variables and never written to disk.
Confidence
72% confidence
Finding
rm -f /tmp/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.