Indie Maker News

Security checks across malware telemetry and agentic risk

Overview

This is a news aggregation skill that contacts public RSS/API feeds when run, with no evidence of credential use, persistence, destructive actions, or hidden data access.

Install only if you are comfortable with the skill contacting public news/RSS/API sources such as 36kr, V2EX, Hacker News, GitHub Trending, Juejin, and Wallstreetcn when its scripts run. The publisher should correct the conflicting local-only/no-external-API claims in README.md and AUDIT.md.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 88% confidence
Finding: The skill documentation instructs users to run scripts that fetch remote RSS/API content, which implies network access, yet no permissions are declared. This creates a transparency and governance gap: users and hosting platforms cannot accurately assess or constrain the skill's capabilities, increasing the risk of unexpected outbound connections or future capability creep.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal