Js Render Scraper

Security checks across malware telemetry and agentic risk

Overview

This is a functional JavaScript scraping skill, but it includes anti-bot bypass guidance and weakly scoped authenticated scraping that users should review carefully.

Install only for sites you own or are explicitly authorized to scrape. Avoid using the proxy-pool, CAPTCHA-solving, or stealth-plugin guidance, and do not provide credentials unless you have verified the target login domain and are comfortable with the agent retrieving authenticated page content.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (5)

Context-Inappropriate Capability

Medium

Confidence: 95% confidence
Finding: The skill explicitly documents anti-detection and access-evasion tactics such as proxy pools, CAPTCHA solving, and stealth plugins. These techniques materially expand the skill from legitimate rendering support into bypass guidance, enabling unauthorized scraping, evasion of platform defenses, and abuse at scale.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill includes automated login flows using user-supplied credentials and then extracts authenticated page content, but it does not warn about credential handling, session sensitivity, or data minimization. This creates a realistic path for exposing secrets, session-bound content, or personal data through the agent's natural-language output.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The anti-scraping section gives operational advice for bypassing controls without clear authorization or legal/compliance warnings. In context, this makes misuse easier by normalizing evasion of rate limits, fingerprinting, IP controls, and CAPTCHA-based access restrictions.

Ssd 3

Medium

Confidence: 96% confidence
Finding: The documented login workflow accepts credentials, authenticates to a site, and returns full page content from an authenticated session. That creates a direct data exposure path in which private account data, internal pages, or regulated information can be retrieved and surfaced through the assistant without adequate guardrails.

Ssd 4

Medium

Confidence: 91% confidence
Finding: The workflow normalizes a progression from ordinary rendering automation to anti-detection and protected-content extraction, which increases the likelihood of operator misuse. Even without exploit code, this kind of procedural guidance lowers the barrier to unauthorized access and large-scale scraping abuse.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal