Himalaya 1.0.0

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed guide for using the Himalaya email CLI, with normal email-account risks but no hidden or unrelated behavior found.

Install only if you want Codex to help operate a configured email account through Himalaya. Use app-specific credentials stored in `pass`, a system keyring, or another secret manager instead of plaintext config values, and require explicit confirmation before sending, deleting, forwarding, reply-all, or bulk mailbox changes.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The primary setup example embeds `backend.auth.raw` and `message.send.backend.auth.raw` directly in the main configuration sample, which normalizes storing email passwords in plaintext in `~/.config/himalaya/config.toml`. Users often copy primary examples verbatim, so this can lead to credential exposure through weak file permissions, backups, screenshots, dotfile sync, or accidental source-control commits.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal