Adopt A Cactus

Security checks across malware telemetry and agentic risk

Overview

This skill is a markdown guide for using an external virtual-pet API and does not include hidden code, installers, or automatic local behavior.

Install only if you are comfortable creating an animalhouse.ai account and letting an agent make token-authenticated API calls for pet care. Use a non-sensitive profile, keep the returned bearer token out of chat logs and shared files, and require explicit confirmation before release or other account-changing actions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Description-Behavior Mismatch

Medium

Confidence: 91% confidence
Finding: The skill is framed as narrowly adopting and caring for a cactus, but it documents a much broader API surface including species management, history, graveyard, hall, release, and registration flows. This mismatch can cause an agent or user to grant broader trust and permissions than needed, increasing the chance of unintended account or pet-management actions beyond the advertised purpose.

Missing User Warnings

Low

Confidence: 87% confidence
Finding: The examples instruct transmission of profile data and use of bearer tokens but provide no privacy, retention, or handling guidance. In agentic settings, this increases the risk that operators submit unnecessary personal data, mishandle long-lived tokens, or allow logs and prompts to capture sensitive authentication material.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal