Security audit · WhatsApp

Security checks across malware telemetry and agentic risk

Overview

This appears to be a WhatsApp Business API helper with one broad-activation concern, but no evidence of hidden execution, exfiltration, persistence, or automatic message sending.

Install this only if you want help with WhatsApp Business API implementation or troubleshooting. Invoke it deliberately for business messaging tasks, and do not provide production tokens or send customer messages unless you understand the Meta account permissions, opt-in rules, and template requirements.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The description says to use the skill whenever users want to send messages, manage templates, or automate customer communication on WhatsApp, which is broad enough to trigger on many ordinary WhatsApp-related requests. In an agentic environment, over-broad activation can cause the assistant to select a tool-capable skill too eagerly, increasing the chance of unintended access to business messaging operations or prompting users into connection/setup flows when they only wanted advice or general information.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal