Back to skill

Security audit

Sensibo

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a coherent Sensibo AC-control helper, with expected but sensitive access to device controls, schedules, and an API key.

Install only if you are comfortable giving the agent control over Sensibo devices. Store the API key like a password, avoid sharing TOOLS.md, rotate the key if exposed, and explicitly review any schedule, timer, or automation changes before letting the agent apply them.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill documents creating, deleting, and enabling schedules/timers that can persist or execute later, but it does not require any explicit user confirmation or warn about delayed side effects. In a home automation context, this can cause unintended HVAC operation after the conversation ends, leading to comfort, energy, or equipment-use consequences that are harder for users to notice and reverse than immediate actions.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The setup instructions tell users to place the Sensibo API key directly into TOOLS.md without identifying it as a secret or recommending secure storage practices. Exposing a live API key in broadly accessible documentation increases the risk of credential leakage, which could let anyone with access control the user's AC devices and query related device data.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.