Knowledge Graph - Graphql Graph Mapping

Security checks across malware telemetry and agentic risk

Overview

This is a coherent GraphQL-to-graph mapping skill, but it presents production-ready database query generation while building unparameterized queries from user input and giving little safety guidance for live or mutating database use.

Review generated queries before running them against any live graph database. Use read-only or least-privilege database credentials by default, avoid exposing this translator directly to untrusted GraphQL input, and add parameterized query construction or strict schema-based validation before production use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill describes translating GraphQL queries and mutations into native graph database operations and returning results, but it does not warn users that these translated operations may run against live databases and can read, modify, or delete real data. In this context, omission of that warning increases the risk of unsafe use, especially because the skill explicitly supports query execution and mentions mutations, execution, and integration with production graph backends.

Missing User Warnings

Medium

Confidence: 99% confidence
Finding: The translator builds Cypher, Gremlin, and SPARQL queries by directly concatenating GraphQL argument values into query strings, including identifiers and filter expressions. In this skill context, GraphQL input is attacker-controlled by design, so this can enable injection into downstream graph queries, potentially exposing or modifying unauthorized data depending on backend permissions.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal