Tavily

Security checks across malware telemetry and agentic risk

Overview

This Tavily search skill is a disclosed external search connector, with the main caution that it may route broad Tavily-related requests to AISA/Tavily.

Install this only if you want Tavily searches routed through AISA and are comfortable providing an AISA_API_KEY. Avoid sending sensitive private queries through it unless you trust the provider, and prefer a narrower/local search path when the user did not explicitly need Tavily-style filtering.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 86% confidence
Finding: The instruction to use this skill for "ANY Tavily request" is overly broad and can cause the agent to invoke the skill whenever Tavily is merely mentioned, even when the user did not ask to use this connector or when a safer/local alternative would suffice. This increases the chance of unintended external calls, unnecessary data disclosure to a third-party service, and workflow hijacking through aggressive routing.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal