Security audit

Fload

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Fload analytics skill, but it can access sensitive app-business data and includes review-reply approval tools that users should treat as state-changing.

Install only if you intend to let an agent access your Fload organization. Use the narrowest available Fload permissions or scopes, protect the API key, verify the @fload-ai/mcp package source/version you run with npx, and require explicit confirmation before approving, sending, rejecting, or deleting review replies.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The skill advertises `approve_action` and `reject_action` as normal workflow steps without clearly warning that these tools can change state on an external platform. That can mislead an agent or user into performing real review-management actions as if they were read-only analytics queries, increasing the chance of unintended approval or rejection of customer-facing replies.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal