Back to skill

Security audit

Pinterest Scraper

Security checks across malware telemetry and agentic risk

Overview

This Pinterest scraper is mostly user-directed, but it needs review because it weakens HTTPS checks for downloads and can upload local JPGs to Telegram when enabled.

Install only if you are comfortable running a scraper that saves images locally and can send them to Telegram. Use a fresh output directory, keep the Telegram token out of shell history and logs, confirm you have rights to redistribute the images, and consider removing verify=False so HTTPS certificate checks remain enabled.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Intent-Code Divergence

Medium
Confidence
84% confidence
Finding
The module docstring describes scraping features but does not clearly disclose that the tool can transmit downloaded content to Telegram. In an agent-skill setting, understated outbound-transfer behavior reduces operator awareness and can cause unintended data disclosure when the feature is enabled.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill promotes sending scraped content to Telegram using bot credentials, but it does not warn users about privacy, data-sharing, or secret-handling risks. In this context, users may expose scraped media, Telegram bot tokens, and chat IDs to third-party services without understanding the consequences.

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The code uploads batches of images to Telegram without any prominent user-facing disclosure beyond the presence of CLI flags. In automation contexts, users may invoke or inherit configuration without realizing files in the output directory will be sent to an external service, creating avoidable privacy and data-handling risk.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.