ghost cms

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it lets an agent manage a Ghost CMS blog using a user-provided Admin API key, including publishing and deleting posts.

Install only if you want an agent to manage a Ghost site you control. Keep the JSON config file private, rotate the Admin API key if exposed, review post IDs and titles before update/delete operations, require explicit confirmation before publishing or deleting live content, and use trusted local image files or URLs.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill explicitly documents deletion of Ghost posts but provides no warning, confirmation step, or guidance to verify user intent before executing an irreversible action. In an agent setting, this increases the chance of accidental or unauthorized destructive content changes if the agent acts on ambiguous prompts.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal