Back to skill

Security audit

Academic Paper Finder

Security checks across malware telemetry and agentic risk

Overview

This skill does what it advertises: it searches biomedical papers and can add selected references to Zotero or write RIS files.

Install only if you are comfortable sending literature queries and identifiers to PubMed/NCBI, OpenAlex, and Zotero. Use a Zotero API key with the minimum permissions needed, review PMID/DOI lists before batch import, and choose RIS output paths intentionally.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
88% confidence
Finding
The skill documentation describes capabilities that use environment variables, write local RIS files, and perform networked actions against PubMed and Zotero, but it does not declare corresponding permissions. Missing permission declarations weaken transparency and reviewability, making it easier for users or platforms to underestimate the skill's actual access to credentials, files, and external services.

Missing User Warnings

Low
Confidence
83% confidence
Finding
The documentation tells users how to add items to Zotero and generate RIS files without clearly warning that these steps will modify a remote Zotero library or create files on disk. Even if expected for this workflow, omission of side-effect warnings can lead to unintended account changes or local file creation without informed user consent.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
Requesting a Zotero API key and user ID without clearly warning that the credentials will be used to alter the user's Zotero library creates a consent and credential-handling risk. Users may provide sensitive tokens without understanding the scope of account access or the consequences of misuse or misconfiguration.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.