Birdnet

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward read-only BirdNET-Go helper, with the main caution that it sends detection queries to a configured HTTP endpoint.

Install this only if you want the agent to read bird detection records from your BirdNET-Go instance. Configure the URL to a trusted endpoint you control, prefer localhost or HTTPS where available, and remember that plain HTTP may expose species, timestamps, weather, and query activity to others on the same network path.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The script reads a local credential/config file to determine the BirdNET endpoint and then automatically sends user queries to that network service without any disclosure, confirmation, or restriction. In an agent-skill context, hidden network access can expose private observation data, internal service locations, and user activity patterns to a remote or LAN-hosted API, especially because the default endpoint is a hardcoded private IP address.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal