Telegram Auto Topic

Security checks across malware telemetry and agentic risk

Overview

This skill does what it advertises: it lets a configured Telegram bot create forum topics from /topic messages.

Install this only for Telegram forum groups where you want members to create topics through the bot. Keep the bot token protected, grant Manage Topics only in intended groups, and leave mention-required behavior enabled unless the group is trusted.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 86% confidence
Finding: The skill instructs the agent to execute a shell script, but the skill metadata does not declare any explicit permission model for shell execution beyond runtime requirements. This creates an authorization gap: a reviewer or runtime may underestimate the skill's ability to execute local commands, and the script is invoked with user-influenced values such as sender name, title, and message text. Even if the script itself may be safe, undeclared shell capability increases risk because it broadens the attack surface and hides execution power from users and policy controls.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal