Back to skill

Security audit

Seer server manager

Security checks across malware telemetry and agentic risk

Overview

The skill appears to document legitimate administrative API operations, but it includes high-impact delete and user-management actions without enough guardrails.

Review this skill carefully before installing. Use least-privileged credentials where possible, avoid granting user-administration rights unless needed, and require explicit human confirmation before any delete, bulk update, import, password reset, or other account-changing operation.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill documents destructive administrative operations such as deleting media, deleting files, deleting issues, and similar state-changing actions without any warning about side effects, permission requirements, or a confirmation workflow. In an agent context, this increases the chance that an LLM or user invokes irreversible actions accidentally, especially because the skill presents them alongside harmless read-only commands with no safety distinction.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The users section exposes sensitive administrative capabilities such as create, update, delete, bulk-update, import, and password reset without cautionary guidance. In an MCP/agent setting, these commands could change account state, permissions, or credentials if selected by mistake or through prompt manipulation, making the absence of guardrails materially risky.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.