Beestat

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Beestat/ecobee helper, but it can expose private home sensor data and depends on an external npm CLI.

Install only if you trust the `beestat-cli` npm package and are comfortable giving it a Beestat API key. Use it in trusted sessions because outputs may reveal home occupancy, room temperatures, air quality, thermostat details, and HVAC usage patterns.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Description-Behavior Mismatch

Medium

Confidence: 92% confidence
Finding: The skill is presented as a query-oriented thermostat data tool, but it also documents a state-changing `beestat sync` command that can trigger an external action against the linked ecobee/beestat account. This expands the skill's effective capability beyond passive read-only access and can cause unintended side effects, especially if an agent invokes commands based on natural-language prompts without clear user confirmation.

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The skill exposes occupancy and room sensor presence information without any privacy warning, even though this data can reveal whether specific rooms are occupied and support inference about household presence patterns. In a home automation context, that is sensitive personal data and should be clearly disclosed before use or sharing.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal