Magyar Szótár

Security checks across malware telemetry and agentic risk

Overview

This is a simple Hungarian dictionary skill; its only notable risk is that optional web lookups may send queried text to public dictionary services.

Safe for ordinary word, synonym, and proverb lookups. Avoid using the web fallback on private documents, messages, names, or confidential text unless you are comfortable with the queried terms being sent to public dictionary services such as Wiktionary or Sztaki.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The skill explicitly instructs use of a web API as a fallback for dictionary lookups but does not warn that queried words or text may be transmitted to third-party services. If users submit sensitive text for linguistic analysis, this can cause unintended disclosure of personal, confidential, or regulated data to external providers.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The documented fallback to public dictionary APIs lacks any warning, consent step, or data-handling guidance. In this skill's context, users may request analysis of full Hungarian text, not just isolated words, making external transmission more dangerous because larger text snippets can contain sensitive or identifying information.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal