notebooklm-cli

Security checks across malware telemetry and agentic risk

Overview

This NotebookLM CLI skill appears purpose-aligned, but its login flow reads browser session cookies without enough detail about consent, storage, or deletion.

Install only if you are comfortable letting this tool access authenticated Chrome session cookies for NotebookLM. Before using `nlm login`, verify where cookies are stored, how to delete them, and whether the tool can be run in an isolated browser profile or test account.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly states that `nlm login` launches Chrome and extracts session cookies, but it does not present a clear security warning, informed-consent notice, or details on how those cookies are stored and protected. Extracting browser session cookies is highly sensitive because those tokens can grant authenticated access without requiring the user’s password or MFA again.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The documentation explicitly states that `nlm login` authenticates by launching Chrome and extracting session cookies, but it does not present this as a sensitive, high-risk action or warn users about the security implications of browser cookie access. Session cookies can grant account access if mishandled, so normalizing this behavior without a clear warning increases the risk of credential/session theft or unsafe operator use.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal