Security audit

Social Media Scraper

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only skill for using EnsembleData's public social-media scraping API, with disclosed token use and no hidden execution, but users should handle tokens and collected public data carefully.

Install only if you intend to use EnsembleData for public social-media data collection. Treat the EnsembleData token as a secret, redact full request URLs from logs and shared prompts, avoid unnecessary bulk collection, and confirm your use complies with platform terms, privacy law, consent expectations, and your own retention limits.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (5)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill instructs users to place an authentication token in requests to a third-party scraping service but does not clearly warn about the trust, privacy, and key-handling implications. In an agent setting, this can normalize sending secrets to an external provider and increase the risk of accidental token disclosure through logs, shared transcripts, or misuse of the third-party service.

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill explicitly promotes scraping Instagram comments and detailed profile/contact information while providing no privacy, consent, retention, or acceptable-use warning. Even if the data is described as publicly available, comments and contact/business profile details can still be aggregated at scale for profiling, harassment, spam, or other privacy-invasive uses, making the omission security-relevant in this context.

Missing User Warnings

Medium

Confidence: 81% confidence
Finding: The skill explicitly promotes Reddit data collection, monitoring, competitive intelligence, and sentiment analysis use cases without any guidance on privacy, retention, consent, or platform-policy compliance. While the data is described as public, packaging broad monitoring capabilities without safeguards can facilitate profiling, large-scale surveillance, or misuse of collected user content.

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill explicitly promotes real-time TikTok scraping and requires passing an API token on every request, but provides no guidance on privacy, acceptable use, platform-policy compliance, or safe handling of scraped data. In an agent context, this omission can normalize bulk collection of public-but-sensitive profile and behavioral data and increase the chance of policy-violating or privacy-invasive automation.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The documented endpoints enable collection of profile metadata, followers/followings, liked posts, comments, and replies at scale without any warning that these datasets may enable tracking, deanonymization, or invasive profiling. Although the data is described as public, aggregating and automating access materially increases privacy risk and can facilitate surveillance or abusive targeting when embedded in an agent skill.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal