Bind Protocol MCP Server Use
Security checks across malware telemetry and agentic risk
Overview
This skill is a transparent Bind Protocol MCP integration, but it can use a Bind agent key to perform real account actions when enabled.
Install this only if you intend to use Bind Protocol from your agent. Use a dedicated least-privilege Bind agent key, keep it in an environment variable, review the upstream npm package before using production credentials, and confirm before creating policies, issuing credentials, submitting proof inputs, or sharing proofs.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.