Redis Commander

Security checks across malware telemetry and agentic risk

Overview

This skill coherently starts and stops a local Redis Commander web UI, with the main risks disclosed and bounded to local Docker use.

Install this only for a local development Redis environment you control. Change the default Commander and Redis passwords on shared machines or sensitive data, and stop the container when finished because it is configured to restart until explicitly stopped.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 85% confidence
Finding: The trigger set includes broad phrases like 'interface redis' and 'admin redis', which can plausibly match ordinary user requests about Redis administration rather than an explicit request to manage this specific local Dockerized UI. In an agent environment, ambiguous activation can cause the wrong skill to run and start/stop services or expose an admin interface unexpectedly.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal