Share One-Time Link

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed temporary public file-sharing tool, with real operational risks but no artifact-backed deception or unrelated behavior.

Install only if you intend to run an internet-reachable temporary file-sharing service. Use a strong SHARE_SECRET, prefer the x-share-secret header rather than putting secrets in URLs, confirm the exact file and TTL before sharing, stop the Node server and Cloudflare Tunnel when done, and periodically check the shared directory for leftover copies.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Context-Inappropriate Capability

Low

Confidence: 98% confidence
Finding: The authentication middleware accepts the shared secret in the query string, which can leak through browser history, reverse-proxy logs, analytics, referrers, and tunnel/access logs. Because this service is intended to be publicly exposed via Cloudflare Tunnel, any secret disclosure could let an attacker mint links or enumerate status for shared files.

Vague Triggers

Medium

Confidence: 87% confidence
Finding: The trigger phrases are broad enough that the skill may activate on generic requests like 'share' or 'send link' without the user clearly intending to publish a local file to a public, internet-accessible endpoint. In this skill's context, unintended activation is more dangerous than usual because activation can lead to external exposure of local files, even if links are temporary and tokenized.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal