Back to skill

Security audit

pexels-image-downloader

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Pexels image downloader with expected API-key, network, and local file-writing behavior, plus minor documentation and dependency cautions.

Install only if you are comfortable giving it a Pexels API key and sending your image searches to Pexels. Use a dedicated API key, do not print it in shared terminals or logs, run it in a dedicated output folder, and prefer pinned/current patched versions of requests and Pillow.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Lp3

Medium
Category
MCP Least Privilege
Confidence
88% confidence
Finding
The skill documentation describes capabilities that access environment variables, write files, and use the network, but it does not declare corresponding permissions. This creates a transparency and trust problem: users or platforms may authorize or run the skill without understanding that it can read API keys, download remote content, and create or overwrite local files.

Missing User Warnings

Low
Confidence
77% confidence
Finding
The documentation instructs users to place the Pexels API key in an environment variable and even print it with shell commands during troubleshooting, but it does not warn about credential handling risks. This can lead to accidental exposure through shell history, terminal logs, screenshots, shared sessions, or copied diagnostics.

Missing User Warnings

Low
Confidence
80% confidence
Finding
The skill clearly performs downloads and writes output files/directories, but the documentation does not warn that local files may be created or overwritten. In batch workflows this increases the chance of unintended data loss, clutter, or writing into sensitive or user-unexpected paths, especially when output paths are parameterized.

Unpinned Dependencies

Low
Category
Supply Chain
Content
requests>=2.31.0
pillow>=10.0.0
Confidence
94% confidence
Finding
requests>=2.31.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
requests>=2.31.0
pillow>=10.0.0
Confidence
95% confidence
Finding
pillow>=10.0.0

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.