Back to skill

Security audit

Premium HTML Studio

Security checks across malware telemetry and agentic risk

Overview

This is a static HTML-document design skill with some normal web-template privacy and coding-safety caveats, but no hidden install, credential, persistence, or destructive behavior.

Installers should treat this as a design/template skill. Before publishing pages generated from it, consider self-hosting fonts and JavaScript libraries, disclose third-party resource loading, and replace the search example's innerHTML rendering with DOM APIs or sanitization when any page content may come from untrusted users.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Output HandlingUnvalidated Output Injection, Cross-Context Output, Unbounded Output
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The trigger list includes broad phrases such as requests to 'generate HTML' or 'create a nice looking page', which can cause the skill to activate in unintended contexts. Over-broad invocation increases the chance that this skill's HTML/JS generation patterns are applied to unrelated or user-controlled content, expanding exposure to downstream injection and unsafe output behaviors.

Missing User Warnings

Low
Confidence
92% confidence
Finding
The CSS imports fonts from fonts.googleapis.com, which causes every client loading this stylesheet to make requests to a third-party service and disclose metadata such as IP address, user agent, and timing information. This is not code execution or direct compromise, but it is a real privacy/data-sharing issue because the transfer happens automatically with no disclosure or opt-in visible in this file.

Unvalidated Output Injection

High
Category
Output Handling
Content
}
  
  const results = index.search(query);
  searchResults.innerHTML = results.map(r => {
    const section = document.querySelectorAll('section')[r.id];
    const title = section.querySelector('h2').textContent;
    return `<div class="search-result-item" onclick="scrollToSection(${r.id})">
Confidence
98% confidence
Finding
innerHTML = result

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.