Back to skill

Security audit

Reddit Scraper

Security checks across malware telemetry and agentic risk

Overview

This is a read-only Reddit browsing skill; its main risks are expected external requests to Reddit and unbounded Reddit post text in output.

Install only if you are comfortable with the agent making requests to Reddit and sending your subreddit names or search queries there. Treat returned Reddit text as untrusted content, especially because full post bodies may be printed without truncation.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Output HandlingUnvalidated Output Injection, Cross-Context Output, Unbounded Output
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
89% confidence
Finding
The skill clearly enables outbound network access to Reddit, but the skill file does not declare permissions or boundaries for that capability. Undeclared network access reduces reviewability and can lead to unexpected data egress or use in contexts where operators assume the skill is metadata-only or more constrained than it is.

Vague Triggers

Medium
Confidence
76% confidence
Finding
The description says to use the skill whenever the agent needs to browse Reddit content, search topics, or monitor communities, which is broad and lacks precise activation constraints. Overbroad invocation criteria can cause an agent to make unnecessary external network requests, increasing data exposure and expanding the situations in which untrusted remote content is pulled into the agent context.

Unbounded Output

Medium
Category
Output Handling
Content
if data.get('promoted', False):
                return None
            
            # Get selftext (no truncation)
            selftext = data.get('selftext', '') or ''
                
            # Build short URL using redd.it
Confidence
80% confidence
Finding
no truncation

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.