BirdWeather PUC

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a BirdWeather integration whose network access is purpose-aligned, with some disclosure and activation-scope issues users should understand.

Install only if you want your agent to query BirdWeather station-related data. Be aware that broad bird-related requests may invoke the skill, and prefer explicit prompts mentioning BirdWeather or the specific station/action you want.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 91% confidence
Finding: The skill documentation explicitly instructs use of a networked script against BirdWeather API endpoints, yet the skill has no declared permissions. That creates a capability/permission mismatch that can bypass user and platform expectations about external data access, making the skill harder to govern and audit.

Vague Triggers

Medium

Confidence: 76% confidence
Finding: The trigger list includes broad phrases like 'backyard birds' and 'what birds have I heard,' which can cause the skill to activate in routine conversation without clear user intent to access this specific integration. Overbroad activation increases the chance of unnecessary network calls and disclosure of station-linked bird or environmental data in the wrong context.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal