Back to skill

Security audit

Chemvision

Security checks across malware telemetry and agentic risk

Overview

Chemvision is a chemistry helper, but its artifacts make conflicting claims about whether chemical queries stay local or may use external chemistry databases.

Review before installing. Treat chemical names, structures, and reaction queries as possibly visible to a local service or external PubChem/OPSIN-backed lookup unless the publisher documents and ships a true offline setup. Avoid proprietary or confidential compounds until the setup, network behavior, and service code are clear.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Intent-Code Divergence

High
Confidence
90% confidence
Finding
The statement 'Local only — chemistry data never leaves the machine' conflicts with the skill's own description that it uses PubChem and OPSIN, which are external data sources unless fully mirrored locally. This can mislead users and downstream agents about data exposure, causing sensitive chemical queries or proprietary compound information to be sent off-host under false privacy assumptions.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal

Static analysis

No suspicious patterns detected.