Security audit

Ini Align

Security checks across malware telemetry and agentic risk

Overview

This is a small INI reordering utility with no hidden network, credential, persistence, or destructive behavior, but users should review its generated output because formatting and comments may be lost.

Install only if you need INI section/key reordering and are comfortable reviewing the output before using it. Do not point the output path at either original file, and avoid relying on it for lossless config migration unless comments, duplicate entries, and formatting are unimportant.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration

Findings (4)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 88% confidence
Finding: The skill instructs reading two user-supplied files and writing an output file, but it does not declare any permissions despite clearly requiring file read and file write capabilities. In an agent environment, this mismatch can bypass least-privilege controls or prevent reviewers from accurately understanding the skill's access scope, increasing the risk of unintended file access or overwrite if invoked with sensitive paths.

Description-Behavior Mismatch

Medium

Confidence: 98% confidence
Finding: The tool advertises that target-only sections and keys are preserved with full content, but the parser discards comments, blank lines, duplicate keys, and duplicate sections before rewriting. In configuration files, those elements can carry operational meaning or human guidance, so this behavior can silently corrupt or weaken configs while making users trust the output as lossless.

Intent-Code Divergence

Medium

Confidence: 96% confidence
Finding: The docstring states that comments are preserved as metadata, but the code neither stores nor re-emits comments. This mismatch is dangerous because users may rely on the documented behavior when handling sensitive configuration files, leading to silent loss of annotations, disabled settings, or operator instructions.

Vague Triggers

Medium

Confidence: 80% confidence
Finding: The description includes broad trigger language such as 'or similar needs,' which can cause the skill to be invoked for loosely related requests beyond narrow INI alignment. Overbroad invocation raises the chance of the skill gaining access to arbitrary file paths in situations where a more specific or safer tool should have been selected.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.