禅道Bug统计

Security checks across malware telemetry and agentic risk

Overview

The skill does the advertised ZenTao bug counting, but it includes undisclosed default login credentials and sends them to a plain HTTP internal ZenTao URL.

Review before installing. Do not run this with the embedded credentials; treat the exposed password as compromised, set your own ZenTao URL and credentials explicitly, require HTTPS where possible, and confirm the account has only read access needed for bug statistics.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 99% confidence
Finding: The code contains hard-coded fallback credentials (`jinx_robot` / `!!123Abc`) and also defaults to an internal HTTP URL. If this file is shared, committed, or reused, those credentials can be exposed and abused for unauthorized access to the ZenTao instance. The combination of embedded secrets and insecure transport materially increases risk beyond a mere missing warning.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The login flow submits credentials over the network to a default `http://` endpoint, which sends authentication data without transport encryption. On a shared or internal network, this enables interception of credentials and session cookies via man-in-the-middle or passive network monitoring. The issue is not just lack of warning; the implementation itself uses insecure authenticated transport.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal