Back to skill

Security audit

P-E

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do the advertised image-to-Excel task, but it can install packages and write or retain local files automatically without a confirmation step.

Review before installing. Use it only with images you are comfortable saving locally, and expect it may install Python packages, create an Excel file on your Desktop, and leave image copies under `/tmp/p-e-images/` unless you remove them yourself.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
86% confidence
Finding
Broad trigger phrases like '图片提取' or 'picture extract' can cause the skill to activate on ordinary conversation and begin file creation or command execution without clear user intent. Because this skill is designed for zero-interaction execution, accidental triggering increases the chance of unintended filesystem writes and local file handling.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill explicitly instructs zero-interaction execution while creating temp directories, writing image files and JSON, installing packages, and generating an Excel file on the desktop. Silent filesystem modification is risky because users are not warned about what will be written, where it will persist, or that package installation may occur.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.