个性化BOSS直聘打招呼生成器和JD对比

Security checks across malware telemetry and agentic risk

Overview

This BOSS job-search helper is useful for its stated purpose, but it stores sensitive résumé and salary/profile details locally with weak user-facing controls and an unnecessary Bash permission.

Install only if you are comfortable with detailed job-search information being saved on this machine. Before using it, ask how to view and delete the saved profile, avoid pasting full résumés or salary details unless you want them retained locally, and consider removing Bash permission because it is not needed for the documented workflow.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The trigger terms are broad enough that normal conversations about jobs, resumes, positions, or JD text may activate the skill unexpectedly. Because the skill reads and writes a persistent local profile and may request sensitive employment data, accidental invocation can cause unintended collection or use of personal information.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill instructs itself to read and persist a detailed job-seeker profile, including resume content and preferences, but does not clearly disclose up front that this information will be stored locally across sessions. That creates a privacy risk because users may provide highly sensitive personal and employment data without informed consent about retention.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal