Security audit

该 Skill 支持基于关键词的学术论文检索，可以设置发表时间范围与数量并将论文下载到指定目录，帮助用户快速获取目标领域（如大模型）的最新或代表性研究成果。This skill enables keyword-based academic paper retrieval with optional constraints on time range and result size and download them in the folder.

Security checks across malware telemetry and agentic risk

Overview

The skill does what it claims, but it can automatically disable certificate checks while downloading papers, which makes Review appropriate before installation.

Install only if you are comfortable with a local downloader that writes PDFs into your workspace. Prefer a fixed version that fails closed on TLS certificate errors, or review the script and remove the unverified SSL fallback before use; keep max results modest and choose the output directory deliberately.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (3)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 90% confidence
Finding: The skill clearly instructs the agent to perform network access to the arXiv API and write downloaded PDFs into a local `arxiv/` directory, but it declares no permissions. That mismatch can bypass user or platform expectations about what the skill is allowed to do, reducing transparency and making filesystem and network side effects easier to trigger without adequate review.

Context-Inappropriate Capability

Medium

Confidence: 97% confidence
Finding: The script explicitly falls back to an unverified TLS context when certificate validation fails, both for API fetches and PDF downloads. This permits man-in-the-middle interception or tampering of metadata and downloaded PDFs, which is especially relevant because the skill retrieves content from the network and writes it to disk automatically.

Missing User Warnings

Low

Confidence: 83% confidence
Finding: The skill describes bulk downloading PDFs into a local folder, but it does not prominently warn that executing the skill will create directories and write multiple files to the workspace. Even if the behavior is intended, missing disclosure increases the risk of surprising filesystem modifications, storage consumption, and accidental overwriting or clutter in user environments.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal