Security audit

Freelancer Bidder

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only Freelancer.com bidding helper; its web search and bid log behavior fit the stated purpose, but users should approve any real bid submission and keep the log private.

Install this only if you want help finding Freelancer.com projects and drafting bids. Review every generated proposal before use, explicitly approve any real submission, and keep bids.md in a private workspace or disable logging if it would expose sensitive client, budget, or job-search information.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (4)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The description and invocation language are broad enough to activate on general job-search or proposal-writing requests, not just Freelancer.com-specific actions. This can cause the agent to invoke the skill in unintended contexts, leading to scope creep, confusion, or actions taken against the wrong platform or user intent.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill instructs the agent to maintain a local `bids.md` file without clearly informing the user that workspace data will be created or modified. Silent or implicit file writes can surprise users, overwrite existing notes, or create unintended persistent records containing potentially sensitive business activity.

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The workflow example says 'Submit and log it' followed by updating `bids.md`, but it does not clearly separate external submission from local file modification or warn about the write action. In practice, users may not realize a command triggers persistent state changes, increasing the risk of unintended file edits and inaccurate assumptions about what the agent is allowed to do automatically.

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The trigger list includes broad terms such as "Freelancer" and generic job-related phrases that could activate the skill in contexts the user did not intend. In an agent environment, ambiguous activation increases the chance of unintended project scanning, proposal drafting, or exposure of user job-seeking behavior when a conversation merely mentions freelancing.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal