Bluesky

Security checks across malware telemetry and agentic risk

Overview

This Bluesky skill is transparent about its purpose, but it can perform live account-changing social actions without clear approval safeguards.

Install only if you want an agent to act on your Bluesky account. Use a dedicated revocable app password, store it only in secrets or environment configuration, and require manual confirmation before posting, liking, reposting, quoting, bookmarking, or uploading media.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 82% confidence
Finding: The skill enables authenticated posting, engagement actions, bookmarking, and media upload to a third-party social platform without an explicit user-facing warning that it can modify account state and transmit user content externally. In agentic contexts, this can lead to unintended posts, reposts, likes, or media disclosure if users or higher-level orchestration do not realize the skill performs live networked side effects.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal