Security audit

招投标快捷检索引擎-标找找

Security checks across malware telemetry and agentic risk

Overview

This is not malware, but it is advertised as quick tender search while enabling broader procurement intelligence, contact lookup, and web-enhanced research.

Install only if you expect a broad procurement-intelligence assistant, not just a quick bid search tool. Treat returned contact details as sensitive business or personal data, use them only for legitimate purposes, avoid bulk harvesting or unsolicited outreach, and remember that searches and company names may be sent to the Biaozhaozhao API and sometimes to web search when analysis features are used.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration

Findings (5)

Description-Behavior Mismatch

Medium

Confidence: 95% confidence
Finding: The manifest describes a narrowly scoped quick search skill, but the body exposes a much broader set of capabilities including company intelligence, contacts, competitor analysis, and market research. This mismatch can mislead users and orchestrators into granting or invoking the skill for low-risk search use cases while actually enabling richer data access and broader external queries than expected.

Context-Inappropriate Capability

High

Confidence: 96% confidence
Finding: The skill includes company contact lookup, returning named contacts and phone numbers, despite being presented as a quick bid search tool. This is a data-minimization and scope-expansion issue that can expose personal or quasi-personal contact information without clear necessity, consent, or purpose limitation.

Context-Inappropriate Capability

Medium

Confidence: 87% confidence
Finding: The documented use of WebSearch for internet-enhanced analysis exceeds the advertised quick-search purpose and broadens outbound data flows and information sources. This creates a capability-surprise problem where user prompts may trigger external enrichment and synthesis beyond the expected tender lookup behavior.

Vague Triggers

Medium

Confidence: 84% confidence
Finding: The trigger conditions for internet-enhanced analysis are broad and overlap with ordinary analytical requests, making unintended activation likely. That can cause unnecessary external searches, expanded data processing, and user-surprising behavior without clear consent or least-privilege boundaries.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The contact lookup documentation describes access to project contact names and phone numbers but omits clear user-facing notice, sensitivity warnings, or acceptable-use constraints. In context, this increases the risk of privacy misuse, targeted outreach, or collection of contact data under a misleading quick-search framing.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.