Ntfy Cli

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward ntfy notification helper, but users should be careful not to send sensitive content in notifications.

Install only if you intend agents to send messages through ntfy. Use trusted endpoints, prefer HTTPS, keep topic URLs private, and avoid sending passwords, tokens, full email contents, personal data, or sensitive operational details unless you explicitly approve that disclosure.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly encourages sending notification content, including an email example with sender and subject data, to remote ntfy endpoints while only warning that the topic URL is secret. That omits the broader confidentiality risk that message bodies, metadata, and linked resources may traverse or be stored on third-party or self-hosted services, which can expose sensitive operational or personal data if agents forward raw content.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal