Security audit

Ftp Client Php

Security checks across malware telemetry and agentic risk

Overview

This FTP skill does what it claims, but it handles credentials and file transfers through a proxy with weakly disclosed security risks.

Install only if you control and trust the PHP proxy and the FTP account. Use a least-privilege FTP user, a non-empty proxy API key, HTTPS with a valid certificate where possible, and confirm delete, overwrite, move, and recursive directory operations before running them.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill documents delete, move, copy, write, and mkdir operations but provides no warning, confirmation guidance, or safety notes for destructive actions such as recursive directory deletion and overwriting remote files. In an agent setting, this increases the chance of accidental or prompt-induced data loss because users may invoke dangerous commands without understanding their consequences.

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The skill routes FTP credentials and file contents through an HTTP-accessible PHP proxy and even allows an empty API key, but it does not clearly warn users about the trust and confidentiality implications of sending secrets and data through that intermediary. This is dangerous because the proxy can observe, log, or mishandle credentials and transferred files, and any weak transport or proxy compromise could expose sensitive data.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal