Beeper

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do what it says: it lets an agent search local Beeper chat history without sending messages, but that can expose private conversations.

Install only if you are comfortable letting the agent search your local Beeper messages. Use narrow queries, review outputs before reusing them, and avoid exposing chats containing confidential, legal, medical, financial, or sensitive workplace information unless that is intentional. Consider pinning or reviewing the external beeper-cli version before installation.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill explicitly grants access to highly sensitive local chat history spanning multiple messaging platforms, but it does not prominently warn users that personal and potentially confidential communications may be exposed to the agent. Even if the tool is read-only, unrestricted browsing and search of local messages can disclose private, regulated, or business-sensitive data to downstream agent workflows.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal