Anyone Procotol Proxy

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward guide for installing and running a local Anyone Network SOCKS5 proxy, with no evidence of hidden or unrelated behavior.

Install only if you intentionally want traffic routed through the Anyone Network. Verify the NPM package and publisher before using the global install command, avoid routing secrets or regulated/internal data unless allowed by your policies, and stop the proxy when finished.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explicitly routes traffic through a third-party anonymity network and starts a local SOCKS5 proxy, but it does not provide a clear user-facing warning about privacy, compliance, logging, jurisdiction, or network-policy implications. This can cause users or agents to send sensitive requests through an external relay network without informed consent, increasing the risk of policy violations, unexpected data exposure, or operational issues.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal