Airweave

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Airweave search connector that can retrieve workspace data from a configured collection, with no evidence of hidden execution, persistence, or destructive behavior.

Install only if you want the agent to search the configured Airweave collection. Use a least-privilege API key and a collection limited to data the agent may access, leave AIRWEAVE_BASE_URL unset unless you trust the alternate endpoint, and treat retrieved workspace content as context to verify rather than instructions to obey.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The description encourages searching across connected enterprise apps like Slack, GitHub, Notion, Salesforce, and Stripe, but does not clearly warn that the skill may retrieve, summarize, and expose sensitive company data. In practice, this can lead users or downstream agents to invoke the skill without informed consent or proper caution around confidential, regulated, or personal information.

VirusTotal

57/57 vendors flagged this skill as clean.

View on VirusTotal