ai-ppt-generate

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a straightforward PPT-generation integration, but users should understand that prompts are sent to an external SkillBoss/HeyBossAI API and some documented features are not actually implemented.

Install only if you are comfortable providing a SkillBoss API key and sending presentation prompts or outlines to SkillBoss/HeyBossAI. Avoid confidential documents, internal URLs, customer data, or proprietary templates unless your organization has approved that provider and its data-handling terms; also expect the documented theme and template workflow to be incomplete in this version.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (3)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 88% confidence
Finding: The skill declares required environment variables and invokes Python scripts that call an external API, but it does not clearly declare the effective capabilities implied by secret access and outbound network use. This weakens reviewability and user/operator awareness, making it easier to deploy a skill that transmits data or uses secrets without explicit permission gating.

Tp4

High

Category: MCP Tool Poisoning
Confidence: 95% confidence
Finding: The documented behavior materially differs from the observed behavior, including claims about theme selection, template customization, and resource-file handling that are not actually implemented. Security-relevant mismatches are dangerous because users may provide sensitive files or trust workflows under false assumptions, reducing informed consent and masking what the code really does.

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The skill description says users may provide resource files and custom templates, but it does not clearly warn that these materials are sent to an external SkillBoss API service. This creates a data exfiltration and privacy risk because users may upload confidential documents or proprietary templates without understanding that third-party processing occurs.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal