Rss Aggregator

Security checks across malware telemetry and agentic risk

Overview

This RSS aggregation skill appears purpose-aligned, with a local history file used to avoid repeat pushes rather than to hide or exfiltrate data.

Before installing, confirm you are comfortable with the skill fetching configured RSS/web sources and keeping a local pushed_history.log so it can remember which items were already pushed. Clear or inspect that file if you do not want retained feed-processing history.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill instructs persistent modification of a local file (`pushed_history.log`) without any explicit user disclosure or consent flow. Silent writes create statefulness that can surprise users, leak traces of processed content, and alter future behavior in ways that are hard to audit or reverse, especially on shared or sensitive environments.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal