Turso

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Turso CLI reference skill, but users should be careful with database deletion and long-lived token commands.

Install this only if you want an agent to help administer Turso resources. Confirm the exact database, group, organization, or plan before allowing destructive or billing-related commands; prefer expiring tokens over non-expiring ones; do not paste tokens into logs, chat, or source files; and verify the Linux installer source before running the curl-to-bash command.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill documents destructive commands like `turso db destroy` and `turso group destroy` without any warning, confirmation guidance, or recommendation to verify targets first. In an agent-facing skill, this omission increases the chance of accidental irreversible deletion of databases or infrastructure by users or automated workflows.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill includes authentication token retrieval and creation commands, including `--expiration none`, without warning about credential sensitivity, secure storage, least privilege, or the elevated risk of non-expiring tokens. This can lead to long-lived secret exposure, unauthorized database access, and persistence if tokens are logged, echoed, or mishandled by an agent.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal