tiktok-carousel

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed TikTok carousel generator that can upload chosen image files to Postiz drafts, with configuration and dependency risks but no evidence of hidden or destructive behavior.

Install this in a virtual environment, pin or lock dependencies before production use, keep API keys in environment variables or a secrets manager, confirm POSTIZ_API_URL is the real Postiz API, and only upload generated or intentionally selected image files. Review the draft and caption before publishing.

SkillSpector

By NVIDIA

Vulnerability Patterns

Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (9)

Tainted flow: 'url' from os.getenv (line 42, credential/environment) → requests.post (network output)

Critical

Category: Data Flow
Content: "caption": caption, "privacy_level": privacy_level, } resp = requests.post(url, headers=headers, json=payload) try: resp.raise_for_status() except Exception as e:
Confidence: 93% confidence
Finding: resp = requests.post(url, headers=headers, json=payload)

Tainted flow: 'url' from os.getenv (line 42, credential/environment) → requests.post (network output)

Critical

Category: Data Flow
Content: headers = _auth_headers() with p.open('rb') as fh: files = {'file': fh} resp = requests.post(url, headers=headers, files=files) try: resp.raise_for_status() except Exception as e:
Confidence: 95% confidence
Finding: resp = requests.post(url, headers=headers, files=files)

Unpinned Dependencies

Low

Category: Supply Chain
Content: openai>=1.0.0 requests>=2.28.0 Pillow>=10.0.0 python-dotenv>=1.0.0
Confidence: 95% confidence
Finding: openai>=1.0.0

Unpinned Dependencies

Low

Category: Supply Chain
Content: openai>=1.0.0 requests>=2.28.0 Pillow>=10.0.0 python-dotenv>=1.0.0
Confidence: 98% confidence
Finding: requests>=2.28.0

Unpinned Dependencies

Low

Category: Supply Chain
Content: openai>=1.0.0 requests>=2.28.0 Pillow>=10.0.0 python-dotenv>=1.0.0
Confidence: 99% confidence
Finding: Pillow>=10.0.0

Unpinned Dependencies

Low

Category: Supply Chain
Content: openai>=1.0.0 requests>=2.28.0 Pillow>=10.0.0 python-dotenv>=1.0.0
Confidence: 90% confidence
Finding: python-dotenv>=1.0.0

Known Vulnerable Dependency: requests — 10 advisory(ies): CVE-2014-1830 (Exposure of Sensitive Information to an Unauthorized Actor in Requests); CVE-2024-47081 (Requests vulnerable to .netrc credentials leak via malicious URLs); CVE-2024-35195 (Requests `Session` object does not verify requests after making first request wi) +7 more

High

Category: Supply Chain
Confidence: 93% confidence
Finding: requests

Known Vulnerable Dependency: Pillow — 10 advisory(ies): CVE-2016-2533 (Pillow buffer overflow in ImagingPcdDecode); CVE-2023-50447 (Arbitrary Code Execution in Pillow); CVE-2021-27922 (Pillow Uncontrolled Resource Consumption) +7 more

Critical

Category: Supply Chain
Confidence: 97% confidence
Finding: Pillow

Known Vulnerable Dependency: python-dotenv — 1 advisory(ies): CVE-2026-28684 (python-dotenv: Symlink following in set_key allows arbitrary file overwrite via )

Low

Category: Supply Chain
Confidence: 81% confidence
Finding: python-dotenv

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal