Splunk Log Analyzer Dashboard

Security checks across malware telemetry and agentic risk

Overview

This is a local Streamlit dashboard that analyzes user-chosen log files and does not show hidden upload, deletion, persistence, or privilege-escalation behavior.

Install only if you are comfortable running a local Streamlit app and letting it read the log directory you choose. Avoid pointing it at broad private folders, and treat the dashboard output as sensitive if your logs may contain credentials, personal data, or internal infrastructure details.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 89% confidence
Finding: The skill explicitly instructs users to analyze local log files and describes file enumeration and parsing capabilities, but it does not declare corresponding permissions. This creates a transparency and policy gap: the agent may read potentially sensitive local files without users or the platform having an explicit permission boundary, increasing the chance of overbroad file access.

Vague Triggers

Medium

Confidence: 86% confidence
Finding: The automatic invocation examples are broad, everyday phrases like analyzing a log file or checking whether a log has issues. Such generic triggers can cause the skill to launch unintentionally in contexts where the user did not mean to authorize local file inspection, leading to surprise access to sensitive logs and unintended workflow execution.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal