库存监控与补货提醒

Security checks across malware telemetry and agentic risk

Overview

The skill is an inventory-monitoring helper that reads and updates a specified Excel ledger and sends disclosed replenishment alerts to WeCom.

Install only if this agent is allowed to read the named inventory spreadsheet, modify stock counts through 入库/出库 commands, and send stock shortage details to the configured WeCom recipients. Use a restricted webhook, back up the spreadsheet, and consider adding confirmations or audit logs for inventory-changing commands.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill exposes manual commands such as 入库/出库 that directly modify the source Excel file, but it does not clearly warn users that invoking these commands causes persistent changes to the inventory ledger. This can lead to accidental data corruption, unauthorized inventory adjustments, or operational mistakes if users treat the skill as read-only.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill states that replenishment reminders are pushed to WeCom and includes a webhook configuration, but it does not clearly disclose that inventory data leaves the local Excel source and is transmitted to an external service. Even if the destination is a corporate messaging platform, this is still external data sharing that may expose sensitive operational information such as stock levels, shortages, and procurement needs.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal