A Stock Info

Security checks across malware telemetry and agentic risk

Overview

The skill appears purpose-aligned, but its setup documentation reportedly includes a concrete QGDATA_TOKEN, which is unsafe credential handling and should be reviewed before installation.

Review the SKILL.md before installing. Do not use any bundled QGDATA_TOKEN value; obtain your own token, store it outside version control, and ask the publisher to replace the example with a placeholder and rotate any exposed credential.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Context-Inappropriate Capability

High

Confidence: 99% confidence
Finding: The documentation embeds a concrete QGDATA_TOKEN value and instructs users to export or store it in a local env file. Publishing what appears to be a real credential can lead to unauthorized API use, quota theft, billing abuse, and token reuse risk if the same secret is used elsewhere.

Missing User Warnings

High

Confidence: 99% confidence
Finding: The examples expose a full API token without indicating it must be replaced, which strongly encourages unsafe copy-paste behavior and propagates credential leakage. Even if the token is a sample, presenting it as valid normalizes insecure secret handling and may cause users to store credentials in plaintext files.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal