Diagram Cog

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward CellCog diagram-generation integration, but users should avoid sending confidential details unless they trust the service and understand the sharing settings.

Install this only if you are comfortable sending diagram prompts and generated diagram content to CellCog. Do not include secrets, credentials, customer data, regulated data, or confidential internal architecture unless your organization has approved that use, and treat generated shareable URLs according to your privacy needs.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly promotes generating interactive diagrams, deploying web apps, and sharing them via URLs, but it does not clearly disclose that user-provided architecture, process, or system descriptions are sent to an external CellCog service. This creates a real data-handling and privacy risk because users may provide sensitive internal designs, infrastructure details, or business workflows without informed consent.

Missing User Warnings

Low

Confidence: 87% confidence
Finding: The setup section instructs users to install the SDK and set CELLCOG_API_KEY, but gives no guidance on secure credential handling or on the consequences of authenticating to a third-party service. This can lead to unsafe key storage, accidental leakage, or users enabling external data transfer without understanding the trust boundary.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal