Google Home/Nest

Security checks across malware telemetry and agentic risk

Overview

This Google Nest skill has a coherent purpose, but it asks for sensitive smart-home access while documenting missing helper commands and a global install step that users should review carefully.

Install only if you are comfortable managing Google OAuth credentials and giving an agent access to Nest devices. Do not run the global symlink command or any missing helper command unless the helper script is actually present and reviewed. Store tokens outside shared repos, restrict config file permissions, revoke tokens when no longer needed, and require explicit confirmation before camera access or device changes.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 87% confidence
Finding: The skill instructs users to handle OAuth client secrets, refresh tokens, and access tokens, but it does not warn against exposing them in shell history, logs, screenshots, or shared config files. Because these credentials grant access to cameras, thermostats, and other home device data or controls, accidental disclosure could enable unauthorized monitoring or device manipulation.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal