Back to skill

Security audit

Birdbuddy Homeassistant

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Home Assistant setup guide for Bird Buddy with Telegram alerts, but users should handle tokens and shared notification data carefully.

Install only if you want Bird Buddy/Home Assistant events sent to Telegram. Store real tokens in Home Assistant secrets or another protected secret store, avoid committing or pasting them into logs or chats, review each automation before enabling it, and remove any notification fields you do not want sent to Telegram.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill asks the user to handle a Telegram bot token and a long-lived Home Assistant access token, but it does not provide a prominent warning about storage, log leakage, shell history exposure, or accidental disclosure in pasted YAML and curl commands. Because these credentials grant messaging and Home Assistant API access, mishandling them could enable account abuse or control of the user's HA instance.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
These automations are explicitly designed to forward Bird Buddy event data and Home Assistant sensor/state information to Telegram, and the file also instructs the user to provide a bot token and chat identifiers. While this is expected functionality, it still creates a real data-exfiltration path to a third-party service and the file itself does not clearly warn about the privacy/security implications of sending occupancy-like status, device health, and event-derived content externally.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.