Baoyu Design

Security checks across malware telemetry and agentic risk

Overview

This is a broad design-production skill whose file, preview, import, and export behavior is mostly disclosed and aligned with creating HTML design artifacts.

Install this if you want an agent to create, preview, import, and export design artifacts. Be aware that some workflows can fetch GitHub/CDN content, run local rendering tools, start a localhost server, or send a prepared design to connected services like Figma or Canva, so use those features only with design sources and export destinations you trust.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 84% confidence
Finding: The skill explicitly instructs the agent to use network-capable functionality such as `gh api`, importing from GitHub, and serving/previewing content over HTTP, but the metadata declares no corresponding permissions. This creates a trust and governance gap: users and policy layers cannot accurately reason about the skill's external access, which can lead to unintended data exfiltration, unreviewed remote content ingestion, or policy bypass in environments that rely on declared permissions.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal