卖家之家(跨境电商)货盘搜索与发布
Security checks across malware telemetry and agentic risk
Overview
This skill is an instruction-only MJZJ e-commerce helper that openly uses an API key for pallet search, account queries, image upload, and publish-application submission.
Install only if you want an agent to use your MJZJ account for pallet search, account queries, image uploads, and publish applications. Keep MJZJ_API_KEY private, rotate it if exposed, and review listing details such as prices, dates, stock, labels, and images before allowing publish submissions.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.