Back to skill

Security audit

Scientific Graphical Abstract Skill

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed local SVG/chart generator with ordinary dependency and privacy-hygiene caveats, not evidence of hidden data theft or unsafe automatic behavior.

Install from the expected repository, use a virtual environment, and consider pinning or reviewing dependencies before use. Do not feed confidential or unpublished research into any future provider-backed workflow unless that provider use is approved. Review generated SVGs before embedding them on websites, especially when the labels or prompts came from untrusted input.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (10)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The README explicitly supports third-party AI providers and API keys but does not disclose that prompts, paper content, or data files may be sent off-device to external services. In a research context, this can expose unpublished manuscripts, experimental data, or sensitive information to external processors without informed user consent.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill explicitly supports sending prompts and possibly uploaded CSV/JSON research data to external model providers such as Anthropic, OpenAI, and DeepSeek, but it does not disclose that user-supplied content may leave the local environment. This creates a real privacy and data-governance risk because users may submit unpublished research, sensitive datasets, or regulated information under the false assumption that processing is local or first-party.

Unpinned Dependencies

Low
Category
Supply Chain
Content
# Scientific Graphical Abstract Generator 依赖列表

# 图形生成库
matplotlib>=3.7.0
plotly>=5.14.0

# 数据处理
Confidence
92% confidence
Finding
matplotlib>=3.7.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# 图形生成库
matplotlib>=3.7.0
plotly>=5.14.0

# 数据处理
pandas>=2.0.0
Confidence
92% confidence
Finding
plotly>=5.14.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
plotly>=5.14.0

# 数据处理
pandas>=2.0.0
numpy>=1.24.0

# AI模型集成 (可选,根据需要安装)
Confidence
94% confidence
Finding
pandas>=2.0.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# 数据处理
pandas>=2.0.0
numpy>=1.24.0

# AI模型集成 (可选,根据需要安装)
# anthropic>=0.18.0  # Claude API
Confidence
94% confidence
Finding
numpy>=1.24.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# deepseek           # DeepSeek API (如果可用)

# SVG处理 (可选)
svgwrite>=1.4.0
cairosvg>=2.5.0  # 用于SVG转PNG

# 图像处理 (可选)
Confidence
91% confidence
Finding
svgwrite>=1.4.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
cairosvg>=2.5.0  # 用于SVG转PNG

# 图像处理 (可选)
pillow>=10.0.0
Confidence
93% confidence
Finding
pillow>=10.0.0

Known Vulnerable Dependency: cairosvg — 5 advisory(ies): CVE-2026-31899 (CairoSVG vulnerable to Exponential DoS via recursive <use> element amplification); CVE-2021-21236 (Regular Expression Denial of Service in CairoSVG); CVE-2023-27586 (CairoSVG improperly processes SVG files loaded from external resources) +2 more

High
Category
Supply Chain
Confidence
88% confidence
Finding
cairosvg

Known Vulnerable Dependency: pillow — 10 advisory(ies): CVE-2016-2533 (Pillow buffer overflow in ImagingPcdDecode); CVE-2023-50447 (Arbitrary Code Execution in Pillow); CVE-2021-27922 (Pillow Uncontrolled Resource Consumption) +7 more

Critical
Category
Supply Chain
Confidence
86% confidence
Finding
pillow

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.