Huggingface Hub

Security checks across malware telemetry and agentic risk

Overview

This Hugging Face helper does what it advertises, but users should be careful with tokens and uploads.

Install this only if you intend to let the agent interact with Hugging Face Hub. Use a least-privilege HF token, keep it in the platform secret store, and double-check file paths, repository ownership, and repository visibility before running uploads. Do not upload secrets, private datasets, or regulated data unless the target repository and token permissions are appropriate.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill supports authenticated Hub access and file uploads, but the documentation does not clearly warn that local files and account-linked data may be transmitted to a third-party service. In this context, that omission is meaningful because users may invoke upload or authenticated operations without understanding that sensitive artifacts or metadata could leave the local environment.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal