MySQL Natural Language Query Assistant

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed MySQL helper that can query live databases, so it should be used carefully but does not show hidden or malicious behavior.

Install only if you want an agent to query a live MySQL database. Use a dedicated read-only database account scoped to the needed schema, avoid production or admin credentials, review important generated SQL, and install Python database drivers only from trusted package sources.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 90% confidence
Finding: The skill explicitly relies on environment variables for database connection details and on live MySQL connectivity, but no permissions are declared. That creates a capability transparency gap: a host or reviewer may not realize the skill can access sensitive credentials and exfiltrate database contents over the network. In a database-access skill, undeclared env and network access materially increase risk because the skill can reach production data stores directly.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal