SAPCONET SSH Bridge

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed SSH helper for SAPCONET, but one message script can let crafted message text run unintended commands on the remote host.

Install only if you understand that these scripts initiate SSH sessions to SAPCONET and may use the documented default target. Before running scripts/msg-sapconet.sh with real content, fix the message handling by passing text safely, for example via stdin or a properly quoted remote argument, and confirm the SSH target and account are the ones you intend to use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The script initiates SSH connections to a remote host automatically, including a default target IP, without any prompt, warning, or explicit user confirmation. In an agent skill context, this can cause unintended outbound network access, leak execution metadata to the remote system, and trigger actions on infrastructure the user may not realize is being contacted.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The script transmits user-supplied message content to a remote host over SSH without any notice, confirmation, or content restriction. In this skill context, that creates a real data-exfiltration and privacy risk because operators may pass sensitive workflow data assuming it is handled locally, while it is actually sent to a fixed external endpoint.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal