Security audit

Watadot Aws S3

Security checks across malware telemetry and agentic risk

Overview

This is a small AWS S3 command-reference skill whose risky commands are visible and purpose-aligned, but users should treat the sync example as potentially destructive.

Before installing or using this skill, verify the active AWS profile and target bucket. Run sync commands with `--dryrun` first, omit `--delete` unless you intentionally want the destination to exactly match the source, and enable least-privilege IAM plus S3 versioning for important data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The documented `aws s3 sync` example includes `--delete`, which will remove destination objects that do not exist locally. In a reusable skill, this is dangerous because users may copy the command into production workflows without noticing that it is destructive, leading to unintended data loss or deletion of important remote content.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal