Kairos

Security checks across malware telemetry and agentic risk

Overview

This skill appears to use a disclosed external API with bearer-token authentication for its stated purpose, with no evidence of hidden or destructive behavior.

Install only if you trust the external service and intend to give it authenticated access. Use a revocable, least-privilege token where possible, keep it out of logs and shared chats, and rotate it if exposed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill documentation instructs users to send a bearer token to an external third-party service and does not provide any warning about credential handling, trust boundaries, data retention, or the fact that the token grants authenticated access. In an agent-skill context, normalizing authenticated curl examples without explicit caution can lead users or agents to disclose secrets to an unvetted remote service and increases the chance of credential misuse or unintended account actions.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal