Security audit · Telegram

Security checks across malware telemetry and agentic risk

Overview

This appears to be a real Telegram integration, but it gives agents broad authenticated Telegram API access without enough guardrails for reads, writes, or deletes.

Install only if you are comfortable connecting Telegram through Membrane. Before allowing the agent to act, require it to show the exact chat, endpoint/action, method, and payload, and explicitly approve anything that sends, edits, deletes, or bulk-reads Telegram data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The skill documents raw proxy requests to the Telegram API without explicit safety guidance about outbound data transfer, write side effects, or the need to confirm destructive or privacy-impacting operations. In an agent setting, this can encourage direct network actions against a live Telegram connection, increasing the chance of unintended data disclosure, message sending, or state changes.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal