Back to skill

Security audit

Archive/Compression Assistant

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed archive/compression helper that depends on x-cmd, with installation risks documented rather than hidden.

Install only if you want an x-cmd-based archive helper. Prefer Homebrew or manual review for x-cmd installation, avoid pipe-to-shell in sensitive environments, and review archive contents before extracting untrusted files or writing into important directories.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (4)

Description-Behavior Mismatch

High
Confidence
99% confidence
Finding
The file is an installation guide for x-cmd, which is unrelated to the declared archive/compression purpose of the x-zuz skill. This mismatch expands the skill's effective capability into downloading and executing software, creating unnecessary supply-chain and remote-code-execution risk in a context where users would expect only archive handling.

Context-Inappropriate Capability

High
Confidence
99% confidence
Finding
The guide instructs users or agents to fetch and run remote installation content, including a direct pipe-to-shell flow, even though such behavior is unjustified for an archive/compression skill. In skill ecosystems, this can normalize or trigger installation of unrelated software and expose users to compromise if the remote source or delivery path is tampered with.

Vague Triggers

Medium
Confidence
92% confidence
Finding
The skill mandates invocation for any archive-related request with very broad language, which can cause over-triggering and unnecessary execution of archive operations in situations where a safer or more precise workflow would suffice. In an agent setting, broad auto-invocation increases the chance of acting on ambiguous user input and can lead to unintended file access, extraction, or archive manipulation.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The documentation encourages extraction and compression operations but does not warn about filesystem risks such as overwriting files, extracting into sensitive locations, path traversal in malicious archives, or consuming excessive disk space. Because archive handling directly affects the local filesystem, missing safety guidance makes unsafe use more likely, especially when archives come from untrusted sources.

VirusTotal

52/52 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.