Back to skill

Security audit

deepseek-balance

Security checks across malware telemetry and agentic risk

Overview

This skill does the advertised DeepSeek balance check, but it can send an Anthropic token to DeepSeek if a DeepSeek key is not set.

Install only if you will set DEEPSEEK_API_KEY explicitly. Do not run it in an environment where ANTHROPIC_AUTH_TOKEN is set unless that variable intentionally contains a DeepSeek API key; otherwise remove the fallback before use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Context-Inappropriate Capability

Medium
Confidence
98% confidence
Finding
The skill explicitly falls back to using ANTHROPIC_AUTH_TOKEN for a DeepSeek API request, which repurposes a credential intended for a different service. This creates a cross-service secret misuse risk: the skill can transmit a sensitive token outside its stated purpose, potentially leaking or misusing credentials if the token is valid for another endpoint or if operators assume it will never leave the Anthropic context.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.