Korean Gov Programs

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate Korean government-program scraper, but one helper script has a local path-handling flaw that could run unintended code if used with a crafted directory name.

Install only if you are comfortable running a local scraper that contacts public Korean government sites and writes files locally. Use a simple trusted output path such as ./data, avoid running scripts/stats.sh on untrusted or unusual directory names, and verify the installed package includes the reviewed scripts despite the package metadata mismatch.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 88% confidence
Finding: The skill advertises and relies on network access and file writes, but does not declare any permissions or trust boundaries for those capabilities. In an agent setting, this can lead to overbroad execution where the runner grants undeclared access to the filesystem, environment, or external URLs, making review and sandboxing harder and increasing the chance of data exposure or unintended writes.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal