Typecho Post Publisher

Security checks across malware telemetry and agentic risk

Overview

This skill is designed to publish and edit a real Typecho blog using stored credentials, but it lacks clear confirmation and credential-scope safeguards before making public changes.

Review before installing. Use a dedicated low-privilege Typecho account where possible, avoid storing a full admin password if you can, and require the agent to show the target blog, title, content summary, category, and whether it is creating or editing before any publish or save action.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The skill explicitly automates logging into a Typecho admin panel and publishing or editing content using stored credentials, but it does not warn the user that the agent may use preconfigured blog credentials to access an administrative interface and modify site content. This creates a consent and transparency gap: a user may invoke the skill without understanding it can perform privileged actions on their blog, increasing the risk of unintended publication, unauthorized edits, or misuse of stored secrets.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal