Back to skill

Security audit

GenVR Skills

Security checks across malware telemetry and agentic risk

Overview

This is a coherent GenVR media-generation CLI, but users should treat prompts, media URLs, and task details as data sent to GenVR.

Use a dedicated GenVR API key, avoid submitting private or regulated prompts/media unless GenVR handling is acceptable for your use case, and check your local .env before running because the CLI will load it automatically.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
88% confidence
Finding
The skill declares required environment variables and clearly relies on outbound network access to a third-party API, but the skill manifest does not declare equivalent permissions/capabilities. This creates a transparency and governance gap: users may not realize the skill can access secrets and transmit data externally, which undermines informed consent and policy enforcement.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The authentication section asks users to provide API credentials but does not clearly warn that prompts, media inputs, job metadata, and user identifiers will be sent to the external GenVR service. In a media-generation skill, this omission is significant because users may submit sensitive prompts or private images without understanding they leave the local environment and are processed by a third party.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.